Laurent CREPET schrieb: > Since I installed a real firewall on an old P166, I can > send e-mails, browse the web, but I can't use wget from > my other systems (the one who is connected to the internet > through the firewall). > > wget takes some times to connect to ftp.kernel.org, and > then I got this error: > > --20:39:21-- ftp://ftp.kernel.org/pub/linux/kernel/testing/*.bz2 > (try: 2) => `ftp.kernel.org/pub/linux/kernel/testing/.listing' > Connecting to ftp.kernel.org:21... connected! > Logging in as anonymous ... Logged in! > ==> TYPE I ... done. ==> CWD pub/linux/kernel/testing ... done. > ==> PORT ... done. ==> LIST ... > Error in server response, closing control connection. > Retrying. > > For ftp://ftp.free.fr/mirrors/ftp.mandrake-linux.com/Mandrake/updates/8.0/, > it takes too much time before getting anything... Using ncftp go faster and > I successfully download a file from this URLS... > > Do I need to open some ports ? to enable something (squid is > enable in transparent mode) ? The reason for this behaviour is that wget, as well as other Webbrowsers uses passive ftp mode. Control connections are working fine, but data connections will fail because they are normally established on a pseudo random port (both client and server port) when using passive ftp. There are two ways to solve your Problem 1. (unsafe) open all ports above 1024 so that an connection on any unprivileged port may be opened 2. (safe) force wget to use non-passive ftp by setting passive_ftp = off in /etc/wgetrc or your $HOME/.wgetrc Solution 2 will not work with other browsers Mozille/Netscape i.e. Jan
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
