Date: 13 Jul 2003 10:07:45 -0400 From: Lowell Gilbert <freebsd-questions-local@be-well.no-ip.com> To: "Remington L." <cableboy@charter.net> Cc: freebsd-questions@freebsd.org Subject: Re: Newbie proxy question Message-ID: <44isq6tt8u.fsf@be-well.ilk.org> In-Reply-To: <auto-000075006541@remt29.cluster1.charter.net> References: <auto-000075006541@remt29.cluster1.charter.net>
next in thread | previous in thread | raw e-mail | index | archive | help
"Remington L." <cableboy@charter.net> writes: > I am interested in installing an FTP proxy server on my default gateway. I > understand caching and all that, my question goes along the lines of > security. Lets say I leave ports 21, 20 open on the server(default gateway) > and I have another machine which is the actually FTP server. You also need to handle the data connections, and forward them. > I read > somewhere about proxy packet inspection. It is my understanding that without > the proxy anyone can portscan me and find the open port. With proxy > inspection it will only allow in valid FTP commands through, making it > harder to find the open ports. Does this hold true? You can be portscanned in either case. To support FTP, you have to have the FTP command port open.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?44isq6tt8u.fsf>