From owner-freebsd-questions@FreeBSD.ORG  Tue Nov 15 05:21:31 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8CD5016A41F
	for <freebsd-questions@freebsd.org>;
	Tue, 15 Nov 2005 05:21:31 +0000 (GMT) (envelope-from rperry@gti.net)
Received: from apollo.gti.net (apollo.gti.net [199.171.27.7])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4B55243D49
	for <freebsd-questions@freebsd.org>;
	Tue, 15 Nov 2005 05:21:30 +0000 (GMT) (envelope-from rperry@gti.net)
Received: from [192.168.1.15] (morr0643.gti.net [208.216.122.43])
	by apollo.gti.net (mail) with ESMTP id 2F3903543C
	for <freebsd-questions@freebsd.org>;
	Tue, 15 Nov 2005 00:18:33 -0500 (EST)
Message-ID: <43797093.5010206@gti.net>
Date: Tue, 15 Nov 2005 00:22:27 -0500
From: "Robert H. Perry" <rperry@gti.net>
User-Agent: Mozilla Thunderbird 1.0.7 (X11/20051109)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Inconsistency Running IPF Against FTPs
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 15 Nov 2005 05:21:31 -0000

I'm running FreeBSD RELEASE 5.4 and recently installed IPF Firewall.  I 
rarely download files using FTP but have little choice using 
portupgrade.  Now, during an upgrade, I often see the error message, "No 
route to host..." while connecting with an FTP site.  If I disable the 
IPF/IPNAT rules the problem no longer exists.

I've followed installation instructions in the Handbook paying 
particular attention to the section on IPNAT rules.  (I do not claim to 
entirely understand what I read however.)  My immediate question however 
is how current are the instructions?  There is a caveat immediately 
following the IPF Firewall Section title: "This section is work in 
progress. The contents might not be accurate at all times."  If it is 
accurate and should resolve my FTP problems, I'll simply re-read it 
until I get it right.

Any other hints are also appreciated.

Thnx,
Bob Perry