<div>
...but i do not have a /etc/sysconfig directory....what now? ;-)) <br />
SCNR....<br />
<br />
Adding the connection tracking helper module for FTP is one thing, the other thing is, to reflect connection tracking / stateful inspection in your filter rules.<br />
For example, to allow box A to ftp into box B, try this one:<br />
<br />
on B:<br />
modprobe ipt_conntrack ipt_conntrack_ftp <br />
iptables -A INPUT -s A -p tcp --dport 20 -j ACCEPT<br />
iptables -A INPUT -s A -p tcp --dport 21 -j ACCEPT<br />
iptables -A INPUT -s A -m state --state ESTABLISHED,RELATED -j ACCEPT<br />
iptables -A OUTPUT -d A -m state --state ESTABLISHED,RELATED -j ACCEPT<br />
<br />
cheers &amp;&nbsp;HTH,<br />
<br />
-XoF-<br />
<br />
<br />
<br />

</div>


...but i do not have a /etc/sysconfig directory....what now? ;-))
SCNR....

Adding the connection tracking helper module for FTP is one thing, the other thing is, to reflect connection tracking / stateful inspection in your filter rules.
For example, to allow box A to ftp into box B, try this one:

on B:
modprobe ipt_conntrack ipt_conntrack_ftp
iptables -A INPUT -s A -p tcp --dport 20 -j ACCEPT
iptables -A INPUT -s A -p tcp --dport 21 -j ACCEPT
iptables -A INPUT -s A -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A OUTPUT -d A -m state --state ESTABLISHED,RELATED -j ACCEPT

cheers & HTH,

-XoF-





<div>
&gt; ...but i do not have a /etc/sysconfig directory....what now? ;-))<br />
&gt;&nbsp;SCNR....<br />
<br />
oops, too early in the morning...<br />
haven't realized, that the OP clearly mentioned &quot;Fedora Core 3&quot; in the title....:(<br />
<br />
Sorry!
</div>


> ...but i do not have a /etc/sysconfig directory....what now? ;-))
> SCNR....

oops, too early in the morning...
haven't realized, that the OP clearly mentioned "Fedora Core 3" in the title....:(

Sorry!

<div>
<div class="content wysiwyg-content">
I have two linux servers. &nbsp;One needs to ftp into another. &nbsp;The firewall on both are set to all ftp. &nbsp;Taking the firewall off the server and everything works. &nbsp;Put the firewall on, and it works in active mode, but wont end a command such as put, it just stands there. &nbsp;How do I get it to allow ftp to the server when the firewall on the server is up?<br />
Thanks<br />
Ian<br />

</div>
</div>


I have two linux servers.  One needs to ftp into another.  The firewall on both are set to all ftp.  Taking the firewall off the server and everything works.  Put the firewall on, and it works in active mode, but wont end a command such as put, it just stands there.  How do I get it to allow ftp to the server when the firewall on the server is up?
Thanks
Ian


fedora core 3 linux ftp not working due to firewall

The Linux operating system, in all its flavors, has its own share of security flaws that allow intrusions, but there are various mechanisms by which these flaws can be removed, generally divided into two parts: authentication and access control. Authentication is responsible for ensuring that a user requesting access to the system is really the user with the account, while access control is responsible for controlling which resources each account has access to and what kind of access is permitted.