netbsd-users: Re: Getting to ftp.netbsd.org

Subject: Re: Getting to ftp.netbsd.org
To: Louis Guillaume <lguillaume@berklee.edu>
From: Steven M. Bellovin <smb@research.att.com>
List: netbsd-users
Date: 05/07/2003 18:42:26

In message <3EB984D9.8090403@berklee.edu>, "Louis Guillaume" writes:
>Hello,
>
>I've been having a great big fight with my network admin over access to 
>ftp.netbsd.org (or anoncvs) through our Checkpoint Firewall. It's 
>version "NG - patch level 4".
>
>The session looks like this...
>
># ftp -a ftp.netbsd.org
>Trying 2001:4f8:4:b:2e0:81ff:fe21:6563...
>ftp: connect to address 2001:4f8:4:b:2e0:81ff:fe21:6563: No route to host
>Trying 204.152.184.75...
>Connected to ftp.netbsd.org.
>220 ftp.netbsd.org FTP server (NetBSD-ftpd 20020615) ready.
>331 Guest login ok, type your name as password.
>230-
>421 Service not available, remote server has closed connection.
>ftp: Login failed.
>ftp>
>

This is an FAQ.  Try commenting out the following line in
$FWDIR/lib/base.def and reinstall the policy:

        #define FTP_ENFORCE_NL


		--Steve Bellovin, http://www.research.att.com/~smb (me)
		http://www.wilyhacker.com (2nd edition of "Firewalls" book)