What range of ports must a client secure in a FW for active ftp client?
I'm new to working with Iptables and am trying to secure a system with it. I'm quite happy with what I've gotten to work so far but we have a piece of java code that does an active FTP. The active FTP seems to move around using different ports to connect to. Is there a known range? Right now I'm just guessing and each time I guess it just picks a port not in the range I guessed. OH bother.
FYI I am only using Iptables to block incoming ports not outgoing.
I thought just opening port 21 wasn't going to be enough, and it isn't.
This is rather frustrating.
Side note, can I add an accept rule for all ports on a specific IP address in Iptables?
For all your help