Re: allowing passive FTP from the outside

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Markku Kolkka <markkuk@xxxxxxxxx>
Subject: Re: allowing passive FTP from the outside
From: Justin Zygmont <jzygmont@xxxxxxxxxxxxx>
Date: Sat, 2 Apr 2005 13:33:12 -0800 (PST)
Cc: fedora-list@xxxxxxxxxx
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <[email protected]> <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

On Sat, 2 Apr 2005, Markku Kolkka wrote:

Justin Zygmont kirjoitti viestissään (lähetysaika lauantai, 2.
huhtikuuta 2005 12:23):

I know the problem is because a nonexistent iptables rule, i'm
just at a loss as to what the missing rules should look like.
The only thing that is different in this case is that I need
to use port 221 for FTP instead of 21,


That's what breaks everything. The FTP control connection must be
on server port 21. Using a different port violates RFC 959 and
ip_conntrack_ftp doesn't watch any other port for FTP traffic.

are you sure ftp_conntrack is even needed? I thought that's usually used just for stateful routing through a server, and not to connect to one from the outside. Also when I shut iptables down, it works, I can get a ftp listing.

Follow-Ups:
- Re: allowing passive FTP from the outside
  - From: Robert Slade
- Re: allowing passive FTP from the outside
  - From: Markku Kolkka

References:
- allowing passive FTP from the outside
  - From: Justin Zygmont
- Re: allowing passive FTP from the outside
  - From: Markku Kolkka

Prev by Date: Re: Remove me from your email list please!
Next by Date: Re: (no subject)
Previous by thread: Re: allowing passive FTP from the outside
Next by thread: Re: allowing passive FTP from the outside
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]