Re: FTP trought firewall (inverse)
ftp is a horrible protocol to try to firewall because of all the ports
it uses, i suggest using the package 'iptraf' to see what ports are
being used when you connect to it. there are 2 modes of ftp, passive and
active. Switch your ftp client to PASSIVE mode and it should work(i just
tried it) using unix ftp just type 'passive'. To get active mode
working you will have to forward thousands of ports most likely as i
believe it uses a random port above 1024. You can also try to find a ftp
server that forces the client into passive mode if you have users that
won't know how to use passive. IMO though, ftp is insecure and i
reccomend using SSH w/scp to transfer files(it encrypts both the login
and the data).
FTP RFC:
http://www.cis.ohio-state.edu/rfc/rfc0959.txt
nate
Paulo Henrique Baptista de Oliveira wrote:
>
> Hi all,
> I have a box acting a firewall and forwarded 20 and 21 ports to inside.
> I can ftp to FIREWALL but can do ls and transfer dirs or files. I load
> ipmasq_ftp and ipmasq_portfw modules, but no way.
>
> ipmasqadm portfw -a -P tcp -L $FIREWALL 20 -R $INTERNAL 20
> ipmasqadm portfw -a -P tcp -L $FIREWALL 21 -R $INTERNAL 21
>
> Any help is apreciated. Thanks, Paulo Henrique
>
> --
> Unsubscribe? mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
--
:::
ICQ: 75132336
http://www.aphroland.org/
http://www.linuxpowered.net/
aphro@aphroland.org
Reply to: