cURL / Mailing Lists / curl-users / Single Mail

curl-users

Re: Trouble transversing two firewalls w/ passive ftp

From: Nick Harley <nickharley_at_bcbsal.org>
Date: Wed, 18 Jan 2006 09:29:01 -0600

<snip>Is this address one of your machine's local interfaces? Is this
curl version ipv6-enabled? </snip>

It's the address of the external IP we're translated to after leaving
our network. I believe I've compiled curl without IPv6 support:

curl 7.11.0 (i586-mandrake-linux-gnu) libcurl/7.11.0 OpenSSL/0.9.7c
zlib/1.2.1
Protocols: ftp gopher telnet dict ldap http file https ftps
Features: SSL libz NTLM

but I've been wrong before so I may be wrong again in the future.

There's one other thing; the application on the other side of this
transaction is trying to send information back through a specific port.
I was worried that since we're NAT'ing addresses out that the port it's
trying to send back on is in use or otherwise unavailable and is causing
the transfer to fail. I have another IP address reserved solely for this
transaction and I'm waiting on them to add it to their inclusion list so
I can test this theory. Is this all I can do at this point, or does
anyone have some wicked kungfu I can try?

<snip> Of course they say that. </snip>

The only reason they're even humoring me on this is my blanket refusal
to even consider another option until I'm satisfied this truly won't
work. I can be a fantastic jerk when I set my mind to it. :)

<snip> This mail, as all mails to this list, are archived and available
for anyone on
the internet. Oh how we like legal mumbo jumbo no one cares about,
hardly
anyone even reads and is misused like this when sent to public lists.
</snip>

I work at a healthcare provider that gets audited about once every two
months. The warning is either a Sarbox or Hipaa requirement they tack on
to all outgoing emails.

>>> daniel_at_haxx.se 1/18/2006 2:19:22 am >>>
On Tue, 17 Jan 2006, Nick Harley wrote:

> --ftp-port 216.x.x.x

Is this address one of your machine's local interfaces? Is this curl
version
ipv6-enabled? If you answered NO and YES, you're likely to suffer from
this
bug:

               http://curl.haxx.se/mail/lib-2006-01/0136.html

> The people at the other end of this transfer have said that if I
can't enter
> passive mode then I won't be able to send these files and they
suggest that
> I purchase a software package to make it work.

Of course they say that.

> Is it possible to use the ftp port command and enable passive ftp
transfers
> at the same time?

As Dan said, they do the exact opposites. What would happen if both
could be
used?

> You are hereby notified that any dissemination, duplication, or
distribution
> of this transmission by someone other than the intended addressee or
its
> designated agent is strictly prohibited.

This mail, as all mails to this list, are archived and available for
anyone on
the internet. Oh how we like legal mumbo jumbo no one cares about,
hardly
anyone even reads and is misused like this when sent to public lists.

-- 
        Commercial curl and libcurl Technical Support:
http://haxx.se/curl.html 
*** *** *** *** *** *** *** *** *** ***
  CONFIDENTIALITY NOTICE  
This e-mail is intended for the sole use of the individual(s) to whom it is addressed, and may contain information that is privileged, confidential and exempt from disclosure under applicable law.  You are hereby notified that any dissemination, duplication, or distribution of this transmission by someone other than the intended addressee or its designated agent is strictly prohibited.  If you receive this e-mail in error, please notify me immediately by replying to this e-mail.
*** *** *** *** *** *** *** *** *** ***
Received on 2006-01-18