Squid configuration directive ftp_epsv

Available in: 4   3.5   3.4   3.3   3.2   3.1  

History:

Changes to ftp_epsv in Squid-3.5:

Converted into an Access List with allow/deny value driven by ACLs using Squid standard first line wins matching basis.

The old values of on and off imply allow all and deny all respectively and are now deprecated. Do not combine use of on/off values with ACL configuration.

For older versions than 3.3 see the linked pages above

Configuration Details:

Option Name:ftp_epsv
Replaces:
Requires:
Default Value:none
Suggested Config:

	FTP Protocol extensions permit the use of a special "EPSV" command.

	NATs may be able to put the connection on a "fast path" through the
	translator using EPSV, as the EPRT command will never be used
	and therefore, translation of the data portion of the segments 
	will never be needed.

	EPSV is often required to interoperate with FTP servers on IPv6
	networks. On the other hand, it may break some IPv4 servers.

	By default, EPSV may try EPSV with any FTP server. To fine tune
	that decision, you may restrict EPSV to certain clients or servers
	using ACLs:

		ftp_epsv allow|deny al1 acl2 ...

	WARNING: Disabling EPSV may cause problems with external NAT and IPv6.

	Only fast ACLs are supported.
	Requires ftp_passive to be ON (default) for any effect.

 

Back

 

Introduction

Documentation

Support

Miscellaneous

Web Site Translations

Mirrors