Subject: pf vs ftp
To: None <>
From: der Mouse <mouse@Rodents.Montreal.QC.CA>
List: tech-net
Date: 02/06/2006 16:52:48
Does pf special-case FTP?  I set up a pf firewall (3.0) that's supposed
to allow anything as long as the connection is opened by the inside
side.  I would have expected this to allow passive mode FTP to work.

But it doesn't work (though it's by no means determined that pf is the
reason), and seems to imply that
ftp-proxy is necessary to make even *passive* mode FTP work, which
seems majorly broken - why should FTP's connections be any different
from any other outgoing connections?

Any thoughts?

