Yes, I have a clue for you, but that's about all. I've done much reading
on the differences between packet filter and proxy based firewalls. We
too, have had an unresolveable problem with intermittent-at-best FTP
service. When you run a packet filter firewall it fouls up your ftp because
FTP, after it makes a connection and completes the commands necessary
to navigate the files and folders and is ready to actually transfer data, it
assigns to a random port number that is quite high. Per O'Reilly's
Practical
Unix and Internet Security, this problem is alleviated if your ftp client
can
support Passive Transfers. I'm here to tell ya that this does help but does
not
resolve the problem.
Hope this helps.
Beth:-)
-----Original Message-----
From: Michael Jinks <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: March 10, 1998 4:48 AM
Subject: ftp:bind: error through firewall?
>I have a packet-filtering firewall that I'm warring with. I'm up to the
>point where, if I set everything completely wide open, I can get some
>services to go outside the protected net. But ftp is still tripping me
>up.
>
>Whenever I try to do a directory listing, I get:
>
>500 Illegal PORT Command
>ftp: bind: Address already in use
>
>?!?!?!?!?!
>
>This only happens through the firewall, so I know that the server is set
>up the right way.
>
>Any clues?
>
>-m
>
>
>--
> PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
>http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
> To unsubscribe: mail [EMAIL PROTECTED] with
> "unsubscribe" as the Subject.
>
>
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com/RedHat-FAQ /RedHat-Errata /RedHat-Tips /mailing-lists
To unsubscribe: mail [EMAIL PROTECTED] with
"unsubscribe" as the Subject.
