Andrea Matesi

Do you Active FTP through Firewall+NAT ?

November 23rd, 2007 by amatesi

Here’s my experience on actively contributing in the resolution of a problem related to Active FTP & gnu-linux/ip-tables based firewall solution.

First, make sure your firewall has loaded the following modules:

ip_conntrack_ftp
ip_nat_ftp

Then check that the right Forwarding rules apply:

iptables -I FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT

being “RELATED” the important part.

Hope it saves the day to someone…mines already got lost :(

Posted in GNU Linux, System Administrator |

3 Responses to “Do you Active FTP through Firewall+NAT ?”

  1. fmatesi Says:
    November 25th, 2007 at 10:21 pm

    ciao andrew

  2. amatesi Says:
    November 25th, 2007 at 10:22 pm

    test comment

  3. fmatesi Says:
    November 25th, 2007 at 10:25 pm

    ciao ciao ciao

Leave a Reply

*
To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Click to hear an audio file of the anti-spam word