FTP access with ipfw
Emil Khatib
fenomenoxp2 at gmail.com
Sun Nov 7 06:27:03 PST 2004
ipfw add allow tcp from any to any 1024-65000 keep-state
is it secure to open those ports?
On Sun, 7 Nov 2004 15:22:16 +0100, Martin Schweizer
<pcservi at spectraweb.ch> wrote:
> Hello
>
> I had a long time to figure out the rules for ipfw (with and without nat, no
> different for me). Attached I send you the part of rc.firewall that is for ftp:
>
> ipfw -f flush
> ipfw add check-state
>
> [snip]
>
> # FTP
> ipfw add allow tcp from any to any 20
> ipfw add allow tcp from any to any 21
> ipfw add allow tcp from any to any 1024-65000 keep-state
>
> [snip ]
>
> Am Sun, Nov 07, 2004 at 09:02:10AM -0500 Ara schrieb:
> > This mail is probably spam. The original message has been attached
> > along with this report, so you can recognize or block similar unwanted
> > mail in future. See http://spamassassin.org/tag/ for more details.
> >
> > Content preview: Hello Are you connecting directly to internet or via
> > nat? In that case you may have to enable passive mode on your ftp
> > client
> >
> > Content analysis details: (3.60 points, 3 required)
> > IN_REP_TO (-0.5 points) Has a In-Reply-To header
> > FORGED_MUA_OUTLOOK (3.5 points) Forged mail pretending to be from MS Outlook
> > MISSING_OUTLOOK_NAME (0.6 points) Message looks like Outlook, but isn't
> >
> >
>
> Content-Description: original message before SpamAssassin
> > From: "Ara" <ara at avvali.com>
> > To: <freebsd-questions at freebsd.org>
> > Date: Sun, 7 Nov 2004 09:02:10 -0500
> > X-Mailer: Microsoft Office Outlook, Build 11.0.6353
> > Subject: RE: FTP access with ipfw
>
>
> >
> >
> > Hello
> > Are you connecting directly to internet or via nat? In that case you may
> > have to enable passive mode on your ftp client
> >
> > -----Original Message-----
> > From: owner-freebsd-questions at freebsd.org
> > [mailto:owner-freebsd-questions at freebsd.org] On Behalf Of Emil Khatib
> > Sent: November 7, 2004 8:54 AM
> > To: freebsd-questions at freebsd.org
> > Subject: FTP access with ipfw
> >
> > Hi, I-m trying to secure my FreeBSD box using ipfw, but i can-t
> > configure FTP client to access the internet. I-ve googled aroun
> > everywhere but none of the solutions worked for me! I-m connected
> > using dialup and user ppp.
> > And another question, Would it be better if I used the firewall
> > included with PPP?
> > _______________________________________________
> > freebsd-questions at freebsd.org mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
> >
> >
> >
> > _______________________________________________
> > freebsd-questions at freebsd.org mailing list
> > http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> > To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
>
>
> --
>
> Regards
> Gruss
> Mit freundlichen Grüssen
>
> Martin Schweizer
> <info at pc-service.ch>
>
> PC-Service M. Schweizer GmbH; Gewerbehaus Schwarz; CH-8608 Bubikon
> Tel. +41 55 243 30 00; Fax: +41 55 243 33 22; http://www.pc-service.ch;
> public key : http://www.pc-service.ch/pgp/public_key.asc;
> fingerprint: EC21 CA4D 5C78 BC2D 73B7 10F9 C1AE 1691 D30F D239;
>
>
>
More information about the freebsd-questions
mailing list