Comments on: Active FTP connections through iptables http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/ Words of wisdom from a server administrator Mon, 21 May 2012 12:07:17 +0000 hourly 1 http://wordpress.org/?v=3.3.2 By: Zsombor http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-23561 Zsombor Tue, 26 Jul 2011 12:09:41 +0000 http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-23561 Great, thanks. Anyone knows more idea how to solve it when my ftp server is NATed? Great, thanks. Anyone knows more idea how to solve it when my ftp server is NATed?

]]> By: Ray Krueger http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-22992 Ray Krueger Fri, 20 May 2011 14:01:36 +0000 http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-22992 Dude. Yes! So glad I found your blog. As soon as I saw "Racker Hacker" in the title on Google I knew this is where I'd find the answer. Thanks! -Ray Dude. Yes!
So glad I found your blog. As soon as I saw "Racker Hacker" in the title on Google I knew this is where I'd find the answer.

Thanks!
-Ray

]]> By: Cristian B http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-16712 Cristian B Tue, 19 Oct 2010 08:47:08 +0000 http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-16712 A little thing to add: if you add the first rule (iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT), then you don't need this one: iptables -A INPUT -p tcp --sport 20 -m state --state ESTABLISHED,RELATED -j ACCEPT because the first one includes the second one ;-) A little thing to add:
if you add the first rule (iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT), then you don't need this one:
iptables -A INPUT -p tcp --sport 20 -m state --state ESTABLISHED,RELATED -j ACCEPT

because the first one includes the second one ;-)

]]> By: Adam Nielsen http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-15569 Adam Nielsen Sat, 31 Oct 2009 12:36:47 +0000 http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-15569 That's great Joseph, just what I needed :-) Although it has already changed its name to nf_nat_ftp in my kernel! That's great Joseph, just what I needed :-) Although it has already changed its name to nf_nat_ftp in my kernel!

]]> By: Joseph Spenner http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-15518 Joseph Spenner Tue, 29 Sep 2009 17:37:21 +0000 http://rackerhacker.com/2007/07/01/active-ftp-connections-through-iptables/#comment-15518 Just in case anyone is interested 2 years later, there's one more modprobe I needed: modprobe ip_nat_ftp ports=21 Just in case anyone is interested 2 years later, there's one more modprobe I needed:

modprobe ip_nat_ftp ports=21

]]>