any suggestions would be great.
i have a restrictive ipfw ruleset that works great.. it only allows
incoming connections that i allow and outgoing connections allow. i have
a list of ports that i let my users go out on: 80, 22, 143, 443 etc
etc..
All the stuff they might need to do.
how can i
Andrew Thomson writes:
any suggestions would be great.
i have a restrictive ipfw ruleset that works great.. it only allows
incoming connections that i allow and outgoing connections allow. i have
a list of ports that i let my users go out on: 80, 22, 143, 443 etc
etc..
All the stuff they
On Tue, 17 Jun 2003, Andrew Thomson wrote:
how can i handle passive ftp though?
i can let 21 out, but when the remote ftp server says use this x high
port.. i block that because it's not in my list. so what can i do to get
around this..
IIRC, FTP sends its replies on TCP port 20. I
Jaime writes:
IIRC, FTP sends its replies on TCP port 20. I can't recall if
that is port 20 on the remote or local host, though. A little
experimentation and you'll probably figure it out. (hint: netstat -nf
inet)
That's true of non-passive mode connections (FTP server port 20 to FTP
Andrew Thomson wrote:
any suggestions would be great.
i have a restrictive ipfw ruleset that works great.. it only allows
incoming connections that i allow and outgoing connections allow. i have
a list of ports that i let my users go out on: 80, 22, 143, 443 etc
etc..
All the stuff they might
9:08 AM
To: Andrew Thomson
Cc: [EMAIL PROTECTED]
Subject: Re: restrictive ipfw ruleset and ftp
Andrew Thomson wrote:
any suggestions would be great.
i have a restrictive ipfw ruleset that works great.. it only
allows
incoming connections that i allow and outgoing connections allow.
i have
At 2003-06-17T12:13:46Z, Andrew Thomson [EMAIL PROTECTED] writes:
i have a list of ports that i let my users go out on: 80, 22, 143, 443 etc
etc..
Out of curiosity, do you have control over the set of machines that your
users are connecting to? I.e., are they uploading to your own FTP server
[EMAIL PROTECTED] wrote:
[ ... ]
PS: does anyone know what the correct terminology for FTP's
non-passive mode is? I sometimes refer to active mode when talking
FTP (because that term somehow got stuck in my head once upon a time),
but I usually get some very curious/confused looks when I talk
