Re: Iptables and FTP problem

["Mahdi Rahimi" <rahimi@eaedu.net>]

my Rules for passive FTP look like this and works without problem but i
want to my LAN works in active ftp.

###control connection
$IPTABLES -A FORWARD -p tcp -s $LAN --sport 1024:65535 -d $EXT --dport 21
	-m state --state NEW,ESTABLISHED -j ACCEPT
$IPTABLES -A FORWARD -p tcp -s $EXT --sport 21 -d $LAN --dport 1024:65535
	 -m state --state RELATED,ESTABLISHED -j ACCEPT

###data connection
$IPTABLES -A FORWARD -p tcp -s $LAN --sport 1024:65535 -d $EXT --dport
1024:65535
	-m state --state RELATED,ESTABLISHED -j ACCEPT
$IPTABLES -A FORWARD -p tcp -s $EXT --sport 1024:65535 -d $LAN --dport
1024:65535
	-m state --state RELATED,ESTABLISHED -j ACCEPT