Firewalls: Re: solaris 2.5.1 ftp server on inside of firewall -Reply

Firewalls
(January 1998)

Indexed By Thread: [Previous] [Next]

Subject:	Re: solaris 2.5.1 ftp server on inside of firewall -Reply
From:	Jesse White <jwhyte @ mail . state . tn . us>
Date:	Mon, 26 Jan 1998 08:29:48 -0600
To:	rmurphy @ itm-inst . com, jwhyte @ mail . state . tn . us
Cc:	firewalls @ GreatCircle . COM

> [Solaris ftpd] <---> [ Smartwall ] <---> [client program]

This is, indeed, the correct diagram...

> The ftp-gw doesn't use a fixed port for it's data connection back to the
> client. It uses a random high port. (There is a Gauntlet patch to allow >
> you to force this to a particular port number.)

OK, but shouldn't the reply from the server to the ftp-gw daemon on the
firewall still originate from port 20?  I don't care what happens on the
other side of the firewall, just what I have to worry about filtering and
proxying.

>	-Rick

Jesse Whyte
Security Analyst
State of Tennessee
OIR/Telecommunications

Indexed By Date	Previous:	RE: IP training From: Thomas Liam Romanis <TLR @ portcullis-security . com>
Indexed By Date	Next:	Re: banned URL list required From: Scott Cokely <Scott . Cokely @ tus . ssi1 . com>
Indexed By Thread	Previous:	Re: solaris 2.5.1 ftp server on inside of firewall From: Rick Murphy <rmurphy @ itm-inst . com>
Indexed By Thread	Next:	Re: solaris 2.5.1 ftp server on inside of firewall -Reply From: Rick Murphy <rmurphy @ itm-inst . com>