I have 2 server. Server A ( 192.168.0.11 - secure ) and Server B (10.0.11.2 -dmz ). From Server B i do ftp to Server A. If i stop the iptables service at Server B, i can ftp and view directory. but when enable the iptables on Server B, i only can login to ftp from Server A, but unable to view the directory Listing. My question, based on iptables script below in Server B, what else do i need to add so Server A can view the listing as well.? [ note: im using pasive mode ]
[Iptables from Server A]
-A INPUT -i lo -j ACCEPT
-A INPUT -s 127.0.0.1 -j ACCEPT
-A INPUT -s 192.168.0.11 -j ACCEPT
-A INPUT -p tcp -m tcp ! --tcp-flags SYN,RST,ACK SYN -m state --state NEW -j DROP
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -s 213.219.122.11 -j LOG --log-prefix "ZONE-H " --log-level 6
-A INPUT -s 213.219.122.11 -j DROP
-A INPUT -p tcp -m tcp --dport 21 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 8 -m limit --limit 20/sec -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -m limit --limit 10/sec -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 3 -m limit --limit 5/sec -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 30 -m limit --limit 10/sec -j ACCEPT
Start Free Trial
