Date: Thu, 1 Mar 2007 19:49:21 -0600 From: "Kelly D. Grills" <kdgrills@the-grills.com> To: freebsd-questions@freebsd.org Subject: Re: Fwd: IPF (ftp - pkg_add) help requested Message-ID: <20070302014921.GA48654@the-grills.com> In-Reply-To: <6207f7d90703011310m2ffe7740i25c01aa748a79ae9@mail.gmail.com> References: <6207f7d90703010553t745460aap9cdc3f8a03ffaf69@mail.gmail.com> <45E6DBB0.9050603@hier7.com> <6207f7d90703011310m2ffe7740i25c01aa748a79ae9@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--d6Gm4EdcadzBjdND Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Mar 01, 2007 at 04:10:11PM -0500, Don Munyak wrote: >=20 > My server was opening an additional session using ports > 1024, which > I was not initially allowing. ipf was blocking outbound due to this > rule. This is a known issue with ftp client sessions using active mode > when behind a firewall. >=20 As I hinted at in my original response, If you'd rather keep your firewall rules tighter, pkg_add(1) says: Note: If you wish to use passive mode ftp in such transfers, set the variable FTP_PASSIVE_MODE to some value in your environment. Otherwise, the more standard ACTIVE mode may be used. If pkg_add consistently fails to fetch a package from a site known to work, it may be because you have a firewall that demands the usage of passive mode ftp. --=20 Kelly D. Grills kdgrills@the-grills.com --d6Gm4EdcadzBjdND Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (FreeBSD) Comment: PGP key: mailto:kdgrills-pgpkey@the-grills.com iD8DBQFF54Kh7inS5LzF7HMRAiC+AJ4hfYUA5R2o00EDjXIQcOW5bSIGxgCfaWLV PRVxp4J26WJ05znW4xhiKJA= =VyOl -----END PGP SIGNATURE----- --d6Gm4EdcadzBjdND--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20070302014921.GA48654>