> We're running an RH linux firewall, but users are starting to complain
> about the problems using passive FTP. On large file transfers, the file
> will get to 100% or very close, and just hang. Since we're on ISDN, a 10
> meg file is a significant investment of time, and getting that far only to
> fail is getting irritating.
>
> I've looked for a definition of passive mode ftp to no avail, so that makes
> finding a solution that much more challenging :/
>
> Can anyone point me in the right direction? Are there known fixes? The
> mailing list archives gave me zero hits, although I continue to search
> other resources.
A firewall book should explain it. E.g. Chapman & Zwicky
'Building Internet Firewalls' page 225.
An ftp transfer involves 2 connections. The second is made in the opposite
direction to the first (making packet filtering awkward) unless PASV mode
is used so that both conections go the same way.
I've been thinking about what properties would be desirable in a
replacement for ftp, but I'm not about to write such a beast.
--
##############################################################
# Antonomasia [EMAIL PROTECTED] #
# See http://www.notatla.demon.co.uk/ #
##############################################################
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
