At 12:01 PM 3/1/00 -0500, Robert MacDonald wrote:
>It also seems that GEIS software is not responding from the port#
>defined for the DATA(20) port. They seem to arbitrarily pick a high port
>to respond with. GEIS is looking into this.?? If their software responded
>back with the right source port to the right destination port, I'm positive
>the firewall rules set for 'normal' FTP will prevail.
You've hit it on the head. The data connection MUST come from port 20.
Anything else won't work. You can argue that this restriction isn't
strictly in compliance with the FTP RFC, but that's the way Firewall-1 works.
-Rick
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
