On Jun 29, 2007, at 12:20 PM, )\((@sS
wrote:

> im curious.. how does the stateful firewall work exactly?
>
> first you allow all NEW traffic to port 21, then which state is
> related or established?.. and if you use the passivePorts range
> (which i take it.. u must) how can you do without opening the same
> range on the firewall..?


The really Simple explanation/overview. The firewall knows about
the inner workings of the FTP protocol, and will watch the command
stream, looking for the commands that tell the clients which ports to
use, and will dynamically open those ports to allow traffic it.

-Patrick

--
Patrick Muldoon
Network/Software Engineer
INOC (http://www.inoc.net)
PGPKEY (http://www.inoc.net/~doon)
Key ID: 0x370D752C

M$ Windows: Insert wallet into Drive A: and press any key to empty




-------------------------------------------------------------------------
This SF.net email is sponsored by DB2 Express
Download DB2 Express C - the FREE version of DB2 express and take
control of your XML. No limits. Just data. Click to get it now.
http://sourceforge.net/powerbar/db2/
_______________________________________________
ProFTPD Users List
Unsubscribe problems?
http://www.proftpd.org/list-unsub.html