FTP, iptables, and connection tracking
Hello,
I use 3 computers :
1 debian woody firewall,
1 debian woody webserver,
1 windows XP / debian sarge for work.
When I want transer files by FTP,
- in my network,
- from my network to web,
- from web to my network.
The connection success, but for the LIST ftp command, my firewall block
packets with source and destination ports above 1024...
Does anyone know why ftp protocol don't use 20 an 21 ports for this
command, and how to configure my firewall to accept this packets without
breaking it ?
Thanks.
Reply to: