it is right. authentiaction is done from the client originating
connection, and "normal" data transfer is done thru a connectiong
originating from server's port 20 to a requested port on the client. if
you are behind a firewall/proxy, you may want to use ftp in "passive"
mode. or if the firewall is a linux box, use the "ip_nat_ftp" module
-avati
On Mon, 20 May 2002, Fabiano Pacheco wrote:
> Hi All,
> �
> Does anybody knows why when I try to FTP anywere, loggin on my FW, I saw a packet
>coming from port 20 (remote) to a randon port on my FW....
> �
> But there is anything very strange occurring.....I can authenticate on FTP
>Server....but when I try to get a list (ls or dir or something else.....) simply the
>server give me a packet on a random port....so my FW blocks!!!
> �
> Is it right or not? If right, what I have to do on my fw to permit this packet
>traffic?
> �
> Thanx,
> �
> Fabiano Pacheco
>
>
------------------------------------------------------------------------------
It would seem that evil retreats when forcibly confronted.
-- Yarnek of Excalbia, "The Savage Curtain", stardate 5906.5
