Don Stokes wrote:

> "Geoff Thornburrow (DSL HN)" <GeoffT@datacom.co.nz> wrote:
>
>>You need to forward (pinhole) TCP port 21 from the modem through to the FTP
>>server. The FTP server also needs to be able to make outgoing connections on
>>TCP port 20.
>>
>
> Forget about port 20. It's used by the server as a source port, not a
> destination port, so pinholing port 20 has no effect.
>
> Also, consider using protocols other than FTP where possible; HTTP for
> anonymous file retrievals (and possibly authenticated as well), SSH/SCP
> for authenticated access.
>
> (Insert FTP-must-die rant here.)
>

Passive also has *wonderful* attribute that neither end has a data port
of comminality for each transfer. Each new connection has an ephimeral
port at both ends. Quite often the client's source data port will be one
higher than the control port.

This message is part of the NZ ADSL mailing list.
see http://unixathome.org/adsl/ for archives, FAQ,
and various documents.
To unsubscribe: send mail to majordomo@lists.unixathome.org
with "unsubscribe adsl" in the body of the message
Received on Fri Oct 5 14:25:55 2001