ipchains, ftp from client to non-ftp ports
From a client computer running behind my slackware 8 firewall (ipchains 1.3.10), I am trying to ftp to non-ftp ports, however it starts to log in and just hangs. The only ports that I can ftp to from my client machine are ports 20 or 21. Likewise, I am having similar problems trying to listen to streams on port 8000 or whichever from the client machine as well. My rc.firewall is a pretty common script but here is the relevent stuff:
#even more comments
echo "1" > /proc/sys/net/ipv4/ip_forward
#and again more comments
/sbin/ipchains -M -S 7200 10 160
#and then finally
/sbin/ipchains -F forward
/sbin/ipchains -P forward DENY
/sbin/ipchains -A forward -s 192.168.0.2/24 -j MASQ
I've spent day after day learning about ipchains but I'm not really finding anything on allowing client machines to ftp to non-ftp ports or streaming music on something other than port 80. Any info would be sooooo peace.
Are you using passive of active FTP?
You might want to try to find out how the ipchains-FTP support works, it may only look for connections on the usual FTP data/control ports.
aha, I totally forgot about that, thanks for putting me in the right direction. Now I just have to figure out the streaming thing.
|All times are GMT -5. The time now is 01:32 PM.|