On 5/08/2011 7:29 PM, Sandwich Maker wrote: > solaris 8, ipf 3.4.35. > > is it possible to construct a rule which allows incoming port 20 > [ftp-data] -only- when an outgoing port 21 [ftp] connection is active? > anyone have an example?
You have to use the NAT proxy. .e.g. map bge0 0/0 -> 0/32 proxy port ftp ftp/tcp Darren
