rc.firewall rule for passive FTP
Lowell Gilbert
freebsd-questions-local at be-well.ilk.org
Thu Sep 7 07:42:05 PDT 2006
Noah <admin2 at enabled.com> writes:
> what is a good rule to allow passive FTP to work.
>
> the following rules still blocks passive FTP.
>
> #/** Allow setup of FTP PASSIVE **/
> ${fwcmd} add allow tcp from any to ${ip} 49152-65534 setup
If the passive FTP client is on ${ip}, then that's the wrong
direction; it needs to be able to *send* the SYN.
--
Lowell Gilbert, embedded/networking software engineer, Boston area
http://be-well.ilk.org/~lowell/
More information about the freebsd-questions
mailing list