FORWARD allow ftp?

To: "debian-firewall" <debian-firewall@lists.debian.org>
Subject: FORWARD allow ftp?
From: "michael" <michael@etalon.net>
Date: Sat, 23 Apr 2005 11:16:17 -0700
Message-id: <[🔎] 20050423181228.M16480@etalon.net>

Hello,

I wanted to allow my clients behind my firewall to use ftp.
I've added the rules to my iptables script.

-A FORWARD -p tcp -m tcp --dport 21 -j ACCEPT
-A FORWARD -p tcp -m tcp --dport 20 -j ACCEPT
-A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT

Just wanted to get your opinion if this is the correct 
way to do it? The 3rd rule above (--state....) is the one rule
I'm mostly unsure about. Is this the proper way to allow ftp access?
What rules do you guys use for ftp?

Thanks
Mike

Reply to:

Follow-Ups:
- Re: FORWARD allow ftp?
  - From: Arnt Karlsen <arnt@c2i.net>

Prev by Date: Re: Firewalling for IPv6
Next by Date: Re: Firewalling for IPv6
Previous by thread: Re: Firewalling for IPv6
Next by thread: Re: FORWARD allow ftp?
Index(es):
- Date
- Thread