Sorry for the slow reply.
Yes, ftp is working without the iptables firewall on. So that is no problem.
I don't see why I should use a nat module, since I am not doing NAT.
It is a single server, directly connected to the internet. No LAN
behind. So no NAT.
However, this iptables script is still
On Thu, 14 Oct 2004 13:11:30 +0200, Pim Bliek wrote:
>
> Hi All,
>
> I still have trouble, with FTP. A user is able to
> login, but cannot
> retrieve any data (also no 'ls' because of that). Here
> are the lines
> in my fw-script about FTP:
>
> $IPT -t filter -A INPUT -p tcp -s 0/0 -d $NET
> -
Did you "modprobed" the nat FTP Module?
modprobe ip_nat_ftp
Did you allow also the ftp-data port?
From /etc/services:
ftp-data20/tcp
ftp 21/tcp
bye
Pim Bliek wrote:
Hi All,
I still have trouble, with FTP. A user is able to login, but cannot
retrieve any data (also no 'ls' becaus
Hi All,
I still have trouble, with FTP. A user is able to login, but cannot
retrieve any data (also no 'ls' because of that). Here are the lines
in my fw-script about FTP:
$IPT -t filter -A INPUT -p tcp -s 0/0 -d $NET --destination-port 20 !
--syn -j ACCEPT
$IPT -A INPUT -i $NET -m state --state
On Wed, 13 Oct 2004 16:35:46 +0200, Pim Bliek wrote:
>
> That worked! Thanx a lot!
> I am not sure I understand how it works, but it works
:)
>
> Pim
>
>
> On Wed, 13 Oct 2004 07:00:30 -0700 (PDT), Sergio
Basurto
> <[EMAIL PROTECTED]> wrote:
> > On Wed, 13 Oct 2004 15:37:35 +0200, Pim Bliek wr
On Wed, 13 Oct 2004 15:37:35 +0200, Pim Bliek wrote:
>
> Hi All,
>
> I am trying to get a firewall running, but I am no
> networking expert.
> I use Debian Sid, and kernel 2.4.25-1-386 (yes I need
> to upgrade ;)).
(...)
> Regards,
> Pim Bliek
>
you must add something like this, addapt to your
Pim Bliek <[EMAIL PROTECTED]> writes:
> # ICMP Echo-request deny
> $IPT -t filter -A INPUT -p icmp -s 0/0 -d $NET --icmp-type echo-request -j DROP
I would try setting this to ALLOW. I had issues when dropping echo-requests -- don't
know why exactly -- I think that certain OSs try to ping the ser
Hi All,
I am trying to get a firewall running, but I am no networking expert.
I use Debian Sid, and kernel 2.4.25-1-386 (yes I need to upgrade ;)).
Anyway. I got my fw script from a webpage, and it looks pretty ok to
me. When I run it, it certainly blocks everything except the ports I
want it to
8 matches
Mail list logo
