ftp from internal to DMZ
Hi, I have a firewall setup with EXT, DMZ and internal network. The DMZ houses a webserver and ftp server. I can access the webserver and ftp server from the internet but only the web server from internal. The ftp server authenticates but can't open return ports back to internal. My current setup on FW_FORWARD is like this: FW_FORWARD="192.168.1.0/24,192.168.2.2,tcp,80 192.168.1.0/24,192.168.2.2,tcp,21" I have tried various other settings and I even tried adding 192.168.2.2,192.168.1.0/24,tcp to allow the return traffic on any port but I cant get it to work. How can I get this to work? Kind regards, Oli
* Olafur Gardarsson; <oli@itn.is> on 05 Nov, 2002 wrote:
FW_FORWARD="192.168.1.0/24,192.168.2.2,tcp,80 192.168.1.0/24,192.168.2.2,tcp,21"
I have tried various other settings and I even tried adding
192.168.2.2,192.168.1.0/24,tcp
to allow the return traffic on any port but I cant get it to work. How can I get this to work?
FTP is the devil one easy thing would be withough fighting with SUSEfirewall is to use SuSE-proxy suite ( actually it is only a ftp-proxy) then you do not need the above mentioned line just set the ftp-proxy and you will be set ( and probably safer) -- Togan Muftuoglu Unofficial SuSE FAQ Maintainer http://dinamizm.ath.cx
participants (2)
-
Olafur Gardarsson -
Togan Muftuoglu