From owner-freebsd-security Fri Jun 22 11:32: 2 2001 Delivered-To: freebsd-security@freebsd.org Received: from mail.interchange.ca (ns.interchange.ca [216.126.79.2]) by hub.freebsd.org (Postfix) with ESMTP id A5B8A37B401 for ; Fri, 22 Jun 2001 11:31:59 -0700 (PDT) (envelope-from michael@fastmail.ca) Received: by mail.interchange.ca (Fastmailer, from userid 555) id 0F81F21C1; Fri, 22 Jun 2001 14:31:23 -0400 (EDT) MIME-Version: 1.0 Message-Id: <3B338EFB.000039.73802@frodo.searchcanada.ca> Content-Type: Multipart/Mixed; boundary="------------Boundary-00=_BSGCCI000M3NTT4D7TH0" To: freebsd-security@freebsd.org Subject: Letting scp through a firewall using ipfilter From: "Michael Richards" X-Fastmail-IP: 24.43.130.237 Date: Fri, 22 Jun 2001 14:31:23 -0400 (EDT) Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org --------------Boundary-00=_BSGCCI000M3NTT4D7TH0 Content-Type: Text/Plain Content-Transfer-Encoding: 7bit I'm trying to get my firewall to allow scp through. It currently allows ssh in, but it appears that scp creates an outgoing connection from the remote machine back to the originating machine. Anyone know how to solve this problem? The firewall spits out: 22/06/2001 14:22:12.543474 xl1 @0:21 b 24.1.2.3,22 -> 216.1.2.3,1007 PR tcp len 20 10240 -AR IN When I try to: scp user@24.1.2.3:/usr/home/user/filename filename I'm using ipfilter. thanks -Michael _________________________________________________________________ http://fastmail.ca/ - Fast Free Web Email for Canadians --------------Boundary-00=_BSGCCI000M3NTT4D7TH0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message