Fedora Linux Support Community & Resources Center

Home Forums Posting Rules Linux Help Fedora Set-Up Guides Ask Fedora Fedora Project
Go Back   FedoraForum.org > Fedora 17/18 > Servers & Networking
Reload this Page IPtables passive ftp rules donot work!
FedoraForum Search
Forgot Password? Join Us!
Register All Albums FAQ Search Today's Posts Mark Forums Read

Servers & Networking Discuss any Fedora server problems and Networking issues such as dhcp, IP numbers, wlan, modems, etc.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 15th August 2011, 07:54 AM
MickyNQN Offline
Registered User
  
Join Date: May 2011
Posts: 7
windows_7firefox
IPtables passive ftp rules donot work!
Hello every body!
I'm trying to build a firewall with IPTables:

INTERNET <--------> (eth0) FIREWALL (eth1) <------------->FTP_srv

I set all rules DROP by default.

My rules for forwarding packet to FTP server:

#iptables -t nat -A PREROUTING -i eth1 -d $FIREWALL_EX_ADDR -p tcp --dport 21 -j DNAT --to-destination $FTP_ADDR:21
#iptables -A FORWARD -i eth0 -o eth1 -p tcp --dport 21 -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT
#iptables -A FORWARD -o eth0 -i eth1 -p tcp --sport 21 -m state --state ESTABLISHED,RELATED -j ACCEPT
#ACCEPT eth1 POSTROUTING

OK, now i can "ftp" to FTP_srv from INTERNET through firewall. But i cant listing and transfer data.

Then, i do the same with port 40000
( i configure vsftpd with pasv_min_port and pasv_max_port =40000 for Passive FTP)

But i cant listing FTP folder anyway T_T

Now, i try to set ACCEPT all rules, but i get same result T__T

Could you help me, please !

Sorry for my bad English!
Reply With Quote
  #2  
Old 15th August 2011, 10:05 AM
is977's Avatar
is977 Offline
Registered User
  
Join Date: Jul 2009
Location: Ukraine, Mykolaiv
Posts: 35
linuxfirefox
Re: IPtables passive ftp rules donot work!
do you have in /etc/sysconfig/iptables-config stroke IPTABLES_MODULES="nf_conntrack_ftp"?
Reply With Quote
  #3  
Old 16th August 2011, 02:20 AM
MickyNQN Offline
Registered User
  
Join Date: May 2011
Posts: 7
linuxfedorafirefox
Re: IPtables passive ftp rules donot work!
Quote:
Originally Posted by is977 View Post
do you have in /etc/sysconfig/iptables-config stroke IPTABLES_MODULES="nf_conntrack_ftp"?
Thank you so much !!! I forgot it
Reply With Quote
Reply

Tags
donot, ftp, iptables, passive, rules, work

« Previous Thread | Next Thread »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Iptables + Passive FTP (FileZilla) deschamps Security and Privacy 0 11th July 2011 06:38 PM
IPTABLE rules for active/passive ftp rahul.tidke Servers & Networking 0 13th November 2007 09:06 AM
does /etc/rules/60-wacom.rules work? Ujeen Hardware & Laptops 3 9th July 2007 03:44 PM
iptables rules - what is wrong with my rules? duni Servers & Networking 4 30th August 2006 07:38 PM
passive ftp and NAT - can't get it to work elricm Servers & Networking 0 15th May 2005 06:18 PM


Current GMT-time: 06:41 (Wednesday, 19-06-2013)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.
Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

 FedoraForum is Powered by RedHat