Re: [SLE] susefirewall2 and ftp

From: wavesurf@xxxxxxxxx
Date: Fri, 09 Dec 2005 17:11:27 +0100

Op vrijdag 9 december 2005 14:24, schreef Carlos E. R.:
> The Friday 2005-12-09 at 07:52 +0200, Chadley Wilson wrote:
> > I am not sure I understand your point, so let ask this, what is the
> > difference between active and passive ftp ?
>
> Active ftp needs port 20/tcp (ftp-data) open in the _client_. The server,
> after getting the connection in his port 21, opens an outgoing connection
> to the client in port 20. There are thus two connections, one for control,
> another for data sent.
>
> Passive does not need that port open in the client.
>
> --
> Cheers,
> Carlos Robinson

In the firewall port 20 21 tcp are open and 20 udp to....
The strange thing is it won't show here;

linux:~ # nmap 00.00.00.00

Starting nmap 3.81 ( http://www.insecure.org/nmap/ ) at 2005-12-09 16:42 CET
Host ip5450f417.speed.planet.nl (00.00.00.00) seems to be a subnet broadcast
address (returned 1 extra pings). Still scanning it due to ping response
from its own IP.
Interesting ports on ip5450f417.speed.planet.nl (00.00.00.00):
(The 1659 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
21/tcp open ftp
22/tcp open ssh
10082/tcp filtered amandaidx
10083/tcp filtered amidxtape

Nmap finished: 1 IP address (1 host up) scanned in 5.385 seconds

--
Gerrit Jan Eldering

KDE-versie: 3.5.0 Level "a"
Systeem: SuSELinux 10.0
Kernel: 2.6.13-15.7-default

--
Check the headers for your unsubscription address
For additional commands send e-mail to suse-linux-e-help@xxxxxxxx
Also check the archives at http://lists.suse.com
Please read the FAQs: suse-linux-e-faq@xxxxxxxx

Follow-Ups:
- Re: [SLE] susefirewall2 and ftp
  - From: Carlos E. R.

References:
- [SLE] susefirewall2 and ftp
  - From: wavesurf
- Re: [SLE] susefirewall2 and ftp
  - From: Chadley Wilson
- Re: [SLE] susefirewall2 and ftp
  - From: Carlos E. R.

Prev by Date: Re: [SLE] Enabling VNC in SUSE 10
Next by Date: Re: [SLE] Enabling VNC in SUSE 10
Previous by thread: Re: [SLE] susefirewall2 and ftp
Next by thread: Re: [SLE] susefirewall2 and ftp
Index(es):
- Date
- Thread

Relevant Pages

Re: [SLE] susefirewall2 and ftp
... > difference between active and passive ftp? ... after getting the connection in his port 21, ... to the client in port 20. ... Passive does not need that port open in the client. ...
(SuSE)
Re: [SLE] susefirewall2 and ftp
... >> server, after getting the connection in his port 21, opens an outgoing ... >> connection to the client in port 20. ... >> Passive does not need that port open in the client. ...
(SuSE)
Re: OT - A winXP how can I
... So far, I've been unable to make it open the tray icon, bring up the menu, and display the program controls - but once I manually do that, the macro takes over, closes and opens the port, and closes the window. ... the harder part of this operation when I'm in Going down the Road Fast Mode is that manual part which the macro so far refuses to do for me. ... I've found in GpsGate a setting - Retry connection to input - that I can change from "On error" to "On timeout". ...
(rec.outdoors.rv-travel)
Re: [SLE] susefirewall2 and ftp
... >> difference between active and passive ftp? ... > after getting the connection in his port 21, ... > to the client in port 20. ... > Passive does not need that port open in the client. ...
(SuSE)
RE: NAT firewalls possibly insecure by nature?
... That's not my understanding of passive ftp. ... there are mechanisms to send information back along that connection. ... case in point is passive ftp, which opens a connection, and then requests ... NAT firewalls possibly insecure by nature? ...
(Focus-Microsoft)