Fixing up pf for passive mode

Gergely CZUCZY phoemix at
Mon Dec 4 10:12:49 PST 2006

On Mon, Dec 04, 2006 at 01:10:03PM -0500, Kevin Kutzko wrote:
> I am curious how i could set my pf firewall to allow passive mode connections via random ports. I get 
> "illegal port range" when trying to connect / directory list on an external ftp site.
> I have some general ideas as to how i could remedy this but i thought i'd post it here first. Thanks 
> in advance.
use ftp-proxy(8) in base
or pftpx from ports.
for high number of connection i suggest pftpx.


Gergely Czuczy
mailto: gergely.czuczy at

Weenies test. Geniuses solve problems that arise.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 951 bytes
Desc: not available
Url :

More information about the freebsd-pf mailing list