Iptables help?
Christopher Wagner
chrisw at pacaids.com
Fri Dec 7 01:19:10 PST 2001
I feel I should point out that you usually would need to open up port 20 as
well for full FTP functionality. :)
- Christopher Wagner
<chrisw at pacaids.com>
--
Packaging Aids Corporation
IS Administrator
25 Tiburon St.
San Rafael, CA 94901
(415) 454-4868 x116
-----Original Message-----
From: Warren Raquel [mailto:warquel at hotmail.com]
Sent: Thursday, December 06, 2001 12:40 PM
To: talk at nblug.org
Subject: Re: Iptables help?
root at computer root]# echo 1 > /proc/sys/net/ipv4/ip_forward
Since you're running FTP behind the firewall you'll want to load the proper
modules
root at computer root]# /sbin/modprobe ip_masq_ftp (or ip_masq_autofw)
(I can't remember if you have to load ip_masq_portfw too. Try it.)
Then run the ipmasqadm command for ports 20 and 21
root at computer root]# /usr/sbin/ipmasq portfw -a -P tcp -L \
[external.firewall.address] 21 -R [internal.ftp.server.address] 21
root at computer root]# /usr/sbin/ipmasq portfw -a -P tcp -L \
[external.firewall.address] 21 -R [internal.ftp.server.address] 21
-----
More information about the talk
mailing list