Roman Drahtmueller wrote:
I have problems setting up SuSEfirewall2 on a server with openSUSE 11.0 and vsftpd running.
The problem is that I didn't find out the correct configuration for FTP - I can login using a FTP client, but when I try to upload files or request a directory listing, I clash with the firewall :-(
[...]
What do I have to change in my configuration to allow FTP through the firewall?
you will have to disable the filters. The reason is comparatively simple: the ftp protocol opens a TCP connection for each file transfer, even a for a directory listing.
Both vsftpd and pure-ftpd allow to configure a port range used for passive mode. You can open that port range in the firewall than. Normally random ports are used for passive mode which indeed is hard to filter. cu Ludwig -- (o_ Ludwig Nussel //\ V_/_ http://www.suse.de/ SUSE LINUX Products GmbH, GF: Markus Rex, HRB 16746 (AG Nuernberg) -- To unsubscribe, e-mail: opensuse-security+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-security+help@opensuse.org