Hello all
Thank you all people for the hints. Now it works.
--
Regards
Martin Schweizer
<[EMAIL PROTECTED]>
PC-Service M. Schweizer; Gewerbehaus Schwarz; CH-8608 Bubikon
Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch
To Unsubscribe: send mail to [EMAIL PROTECTED]
wit
Martin Schweizer <[EMAIL PROTECTED]> wrote:
> If I use the following rules and I can connect via ftp (for example
> ftp.freebsd.org) but after the successful login I can't do "ls".
As a side note, if you only need a directory listing, you
can also type "rs ." (don't forget the dot). If you us
"Sven Huster" writes:
> try
>
> ftp ftp.host.domain
> ftp> passive
>
> should switch passive on or off not sure now.
> does it work then?
For passive to work one has to allow all tcp outgoing connections. Or
if not all, then at least over a broad range of ports.
For non-passive to work one ha
denied packets
$fwcmd add 65530 deny log all from any to any
#Delete TEMP-RULE
$fwcmd delete 5
-
- Original Message -
From: "Martin Schweizer" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, Sept
: [EMAIL PROTECTED]
> Subject: IPFirewall again
>
>
> Hello
>
> If I use the following rules and I can connect via ftp (for example
> ftp.freebsd.org) but after the successful login I can't do "ls". The
> permissons are always denied. Why? Which port need I also?
>
Hello
If I use the following rules and I can connect via ftp (for example
ftp.freebsd.org) but after the successful login I can't do "ls". The
permissons are always denied. Why? Which port need I also?
# DNS (läuft nur über UDP)
ipfw add allow udp from me to any 53 keep-state
# SMTP
ipfw add a
Andrew Boothman wrote:
> Hi all!
>
> I've successfully built and installed a new world (including GENERIC kernel),
> cvsuped a few hours ago.
>
> But I'm having trouble compiling my custom kernel. During a 'make buildkernel
> KERNCONF=SPATULA' I'm getting the following failure :
>
> ===> ipf
* Andrew Boothman <[EMAIL PROTECTED]> [010713 00:09]:
> Replying to my own message, the subject of this message should have course
>
> have been "_ipfilter_ Module Breakage".
>
> > ===> ipfilter
Search the archives of this mailing list, about a month ago.
ipf moved oin the base system and borke
Rémi Guyomarch wrote:
> Without 'quick' in 'head' rules, ipf will process the entiere group 10
> rules, and will continue with the next, non-group rule (the first rule
> in [...some other rules...]).
> Yes, you can achieve the same thing with 'skipto' but at some point
> you will start to have
