Squid configuration directive ftp_epsv
Available in: 4 3.5 3.4 3.3 3.2 3.1
History:
- Changes to ftp_epsv in Squid-3.5:
-
Converted into an Access List with allow/deny value driven by ACLs using Squid standard first line wins matching basis.
The old values of on and off imply allow all and deny all respectively and are now deprecated. Do not combine use of on/off values with ACL configuration.
For older versions than 3.3 see the linked pages above
Configuration Details:
| Option Name: | ftp_epsv |
|---|---|
| Replaces: | |
| Requires: | |
| Default Value: | none |
| Suggested Config: |
|
FTP Protocol extensions permit the use of a special "EPSV" command. NATs may be able to put the connection on a "fast path" through the translator using EPSV, as the EPRT command will never be used and therefore, translation of the data portion of the segments will never be needed. EPSV is often required to interoperate with FTP servers on IPv6 networks. On the other hand, it may break some IPv4 servers. By default, EPSV may try EPSV with any FTP server. To fine tune that decision, you may restrict EPSV to certain clients or servers using ACLs: ftp_epsv allow|deny al1 acl2 ... WARNING: Disabling EPSV may cause problems with external NAT and IPv6. Only fast ACLs are supported. Requires ftp_passive to be ON (default) for any effect. |
|
Introduction
- About Squid
- Why Squid?
- Squid Developers
- How to Donate
- How to Help Out
- Getting Squid
- Squid Source Packages
- Squid Deployment Case-Studies
- Squid Software Foundation
Documentation
- Configuration:
- FAQ and Wiki
- Guide Books:
- Non-English
- More...
Support
- Security Advisories
- Bugzilla Database
- Mailing lists
- Contacting us
- Commercial services
- Project Sponsors
- Squid-based products
Miscellaneous
- Developer Resources
- Related Writings
- Related Software:
- Squid Artwork