allowing passive FTP from the outside
Markku Kolkka
markkuk at tuubi.net
Sat Apr 2 10:13:29 UTC 2005
Justin Zygmont kirjoitti viestissään (lähetysaika lauantai, 2.
huhtikuuta 2005 12:23):
> I know the problem is because a nonexistent iptables rule, i'm
> just at a loss as to what the missing rules should look like.
> The only thing that is different in this case is that I need
> to use port 221 for FTP instead of 21,
That's what breaks everything. The FTP control connection must be
on server port 21. Using a different port violates RFC 959 and
ip_conntrack_ftp doesn't watch any other port for FTP traffic.
--
Markku Kolkka
markku.kolkka at iki.fi
More information about the fedora-list
mailing list