[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Confused on iptables and ftp..yes still...

My iptable rule:

$IPT -A INPUT -p tcp ! --syn --source-port 20 --destination-port 1024:65535 -j ACCEPT

I read this as any packed that is not a --syn type from source 20 on the ftp
server i'm hooking up to, destined to my pc port 1024:65535 jumps to ACCEPT

here's a snip of my log files:

Oct  3 14:32:44 stimpy kernel: Firewall:IN=eth0 OUT= MAC=00:10:5a:15:35:f1:00:30
:71:78:24:00:08:00 SRC= DST= LEN=60 TOS=0x00 PREC=0x0
0 TTL=54 ID=29441 DF PROTO=TCP SPT=20 DPT=32778 WINDOW=32120 RES=0x00 SYN URGP=0

And that's telling me that it's coming from port 20, it's tcp, and it's headed
to my port 32778, which should jump to ACCEPT!  I simply cannot understand why
the firewall is dropping those packets.  Allan was nice enough to point me to
a web site talking about firewalls and ftp and I 'thought' I had the right 
stuff being let thru.

Here's a twist...the exact same firewall rules were successfull when I was
runnin woody, but now that I'm on a standard potato with 'iptables' added
separately it's not working.

Any ideas?



Reply to: