Advertisement

08.13.2008 at 09:09AM PDT, ID: 23645191 | Points: 500
[x]
Attachment Details

How do I allow any internal NATed machine to actively transfer data to an external FTP server

Asked by VTEX9999 in IP Tables/IP Chains, Linux Networking, File Transfer Protocol (FTP)

Tags: , , ,

I am looking for some documentation on how to allow an Iptables gateway/firewall to allow an active ftp connection in a secure manner.  My current configuration allows the ability for an initial connection to an FTP server but when starting to transfer data, there is no response.

ANY INTERNAL MACHINE -> GATEWAY -> EXTERNAL FTP SERVER (only supporting active mode)

I have the ip_nat_ftp and ip_conntrack_ftp modules loaded at the start of my iptables script.  Any data on the subject would be quite helpful.

Thanks in advance!
Matt
Start Free Trial
[+][-]08.13.2008 at 03:22PM PDT, ID: 22226148

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.13.2008 at 03:51PM PDT, ID: 22226354

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.13.2008 at 04:09PM PDT, ID: 22226479

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.13.2008 at 10:49PM PDT, ID: 22227988

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.15.2008 at 08:13AM PDT, ID: 22238885

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
[+][-]08.16.2008 at 05:49AM PDT, ID: 22243942

At Experts Exchange, members can ask their questions to thousands of technology professionals, also known as Experts. Experts compete and collaborate to answer those questions by leaving comments like this one.

Start your 7-day free trial to view this Expert Comment or ask the Experts your question.

 
[+][-]08.18.2008 at 03:33PM PDT, ID: 22255973

Often, when Experts are collaborating with members who have asked questions, they will request additional information about the problem. Askers respond with an author comment like this one.

Start your 7-day free trial to view this Author Comment or ask the Experts your question.

 
 
Loading Advertisement...
20080716-EE-VQP-32 / EE_QW_2_20070628