FTP-Server on SuSe firewals: passive FTP
Hi, I have the following issue: We are running an FTP-Server (ProFTPd) on a Suse 6.3 Linux-Server which serves also as a firewall (incl. NAT/maquerade). (I know that's not the best idea, but it is not misson critical) The firewall is configuered with SuSe firewals 2.1. Everything works fine exept passive FTP. From the internal Network no problem, but from the external side the firewall blocks the data-connection from the client. Does somebody has an idea how to set up firewall.conf without opening all high ports? Rgds Jakob ---------------------------------------------------------- Prof. Dr. Jakob Weinberg eBusiness FH Wiesbaden University of Applied Sciences Phone: +49 (0)611 9002-122 (office) Phone: +49 (0)6257 69436 (home) mailto:j.weinberg@bwl.fh-wiesbaden.de
Hi,
I have the following issue:
We are running an FTP-Server (ProFTPd) on a Suse 6.3 Linux-Server which serves also as a firewall (incl. NAT/maquerade).
(I know that's not the best idea, but it is not misson critical)
The firewall is configuered with SuSe firewals 2.1. Everything works fine exept passive FTP. From the internal Network no problem, but from the external side the firewall blocks the data-connection from the client.
Does somebody has an idea how to set up firewall.conf without opening all high ports?
Rgds
Jakob
---------------------------------------------------------- Prof. Dr. Jakob Weinberg eBusiness FH Wiesbaden University of Applied Sciences Phone: +49 (0)611 9002-122 (office) Phone: +49 (0)6257 69436 (home) mailto:j.weinberg@bwl.fh-wiesbaden.de
--------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com I am having the same problem. The only fix thus far for me was to put (yes) on the high ports line, instead of just ftp-data. Also if you switch of passive mode sometimes it works, sometimes not. I have found differnt ftp clients will work fine others not i.e., with the ftp-data intact and
On Thu, Nov 16, 2000 at 06:39:28PM +0100, J. Weinberg wrote: passive turned off. -- rsweet@socal.rr.com | Support wildlife -- vote for an -o) | orgy. Linux, the Choice /\ | of a GNU generation _\_v | |
participants (2)
-
J. Weinberg
-
Robert Sweet