[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AW: [FW1] ftp reject "reason: tried to open up other host port"

To: "doug.gregory@mail.state.ky.us" <doug.gregory@mail.state.ky.us>, "fw-1-mailinglist@lists.us.checkpoint.com" <fw-1-mailinglist@lists.us.checkpoint.com>
Subject: AW: [FW1] ftp reject "reason: tried to open up other host port"
From: Axel Hoffmann <axel.hoffmann@eckmann.de>
Date: Tue, 12 Oct 1999 08:55:32 +0200


Hi Doug,
watching your conversation with interest (I have the same problem at a 
customers site, FW-1 4.0 SP4 on HPUX 10.20) I want to know if the hints 
from Angel solved your problems. It didn't solve mine. Is re-installing the 
policy enough or do I have to bounce the FW?


TIA

Axel Hoffmann


Eckmann Netzwerkservice GmbH

Sylvesterallee 2
22525 Hamburg

Tel.:040/54706-195
Fax:040/54706-111
E-Mail:axel.hoffmann@eckmann.de

URL:www.eckmann.de

> -----Ursprungliche Nachricht-----
> Von:	Angel Luis Perez Hernandez [SMTP:angel@workflow.es]
> Gesendet am:	Freitag, 8. Oktober 1999 08:55
> An:	doug.gregory@mail.state.ky.us; 
fw-1-mailinglist@lists.us.checkpoint.com
> Betreff:	RE: [FW1] ftp reject "reason: tried to open up other host port"
>
>
>
>     Comment (//) the first FTPPORT definition and uncomment the second 
one.
> Works fine for me, but I'v checked a capture and my problem was exactly 
that
> (the newline for the PORT command in another packet). I've seen this e  
rror
> again with machines having more than one IP addresses and sending the 
PORT
> command for the "other" address, and this hack on "base.def" didn't solve
> anything, but modifying the PC config did.
>
>     Good luck
>     Angel Luis Perez
>
> ----- Original Message -----
> From: <doug.gregory@mail.state.ky.us>
> To: <angel@workflow.es>
> Sent: Thursday, October 07, 1999 5:15 PM
> Subject: RE: [FW1] ftp reject "reason: tried to open up other host port"
>
>
> > Is this the section of base.def you were talking about..?
> >
> > #define FTPPORT(match)  (call KFUNC_FTPPORT <0x1|(match)>)
> >
> > //
> > //    Use this if you do not want the FW-1 module to insist on a 
newline
> at
> > the
> > // end of the PORT command:
> > // #define FTPPORT(match)       (call KFUNC_FTPPORT <(match)>)
> >
> > Do I just uncomment the first entry or cut& paste the second...?  I am
> > running into some problems with this and would like to try it today.
> >
> > Thank you,
> >
> > Doug Gregory
> > INTERNET SECURITY, x0379
> > "That Which Is Not Expressly Permitted is (should be) Prohibited." CP
> > FW-1 Getting Started Guide.
>
>
>
> 
========================================================================  
========
>      To unsubscribe from this mailing list, please see the instructions 
at
>                http://www.checkpoint.com/services/mailing.html
> 
========================================================================  
========
>
>
> 
========================================================================  
========
>      To unsubscribe from this mailing list, please see the instructions 
at
>                http://www.checkpoint.com/services/mailing.html
> 
========================================================================  
========



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: Re: [FW1] New version of FW-1?
Next by Date: [iso-8859-1] Réf. : Re: [FW1] License
Prev by thread: Re: [FW1] New version of FW-1?
Next by thread: AW: [FW1] ftp reject "reason: tried to open up other host port"
Index(es):
- Date
- Thread