I am still working on setting up an FTP-server in DMZ. I did what Robert Klein suggested, and it helped. External access is working, but the access from internal is only working halfway. I can connect from internal to ftp and i can login ok, but when the dataconnection is being established the firewall is dropping the conn. from FTP-server to internal. I know that it is the conn. to port 20 thats is the problem. Is there anyone who can tell me what's wrong and come up with a solution Thanks in advance Lars Christiansen
Am 11.03.2002 10:50:08, schrieb "Lars Christiansen"
Hi, do you masq. (OK, now it is SNAT) your IP? Then you've to load 'ip_nat_ftp' and 'ip_conntrack_ftp' (with the ip_conntrack_ftp I'm not sure but I think it is needed). Regards Ruediger Lars Christiansen wrote:
I am still working on setting up an FTP-server in DMZ. I did what Robert Klein suggested, and it helped. External access is working, but the access from internal is only working halfway. I can connect from internal to ftp and i can login ok, but when the dataconnection is being established the firewall is dropping the conn. from FTP-server to internal.
I know that it is the conn. to port 20 thats is the problem.
Is there anyone who can tell me what's wrong and come up with a solution
Thanks in advance
Lars Christiansen
Prueba ... FW_FORWARD="redLAN,redDMZ" -----Mensaje original----- De: Lars Christiansen [mailto:lacris@tdcadsl.dk] Enviado el: Lunes, 11 de Marzo de 2002 04:50 a.m. Para: suse-security@suse.com Asunto: [suse-security] help with SUSEFirewall2 and FTP I am still working on setting up an FTP-server in DMZ. I did what Robert Klein suggested, and it helped. External access is working, but the access from internal is only working halfway. I can connect from internal to ftp and i can login ok, but when the dataconnection is being established the firewall is dropping the conn. from FTP-server to internal. I know that it is the conn. to port 20 thats is the problem. Is there anyone who can tell me what's wrong and come up with a solution Thanks in advance Lars Christiansen
participants (4)
-
Carlos Carrera
-
ic_admin
-
Lars Christiansen
-
Michael Appeldorn