I'm still kinda new at this so bear with me. Have a Netscreen 5GT and we're setting up a Linux FTP server on our DMZ. We will have the Linux server configured for pasv ftp. My question is regarding the firewall config...do I need to allow all ports over 1024 to the FTP box? Or is there something the netscreen does automatically so I don't have to open all those ports? My understanding is the pasv ftp server will tell the client what port above 1024 to use so we need those ports open to the box...can the netscreen "see" this request and automatically open the proper ports? Or am I reaching here?
18 years ago