LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 05-06-2005, 03:42 AM   #1
freebies
LQ Newbie
 
Registered: Feb 2005
Posts: 27

Rep: Reputation: 15
apf blocking ftp port 20


when i run pure-ftpd at port 21: apf dont drop connections from port 20 -.> going to client high port (ftp data connection)

but when i bind ftp to other port, like 8321, then apf drop this packets.

apf.tcp.outbound there arent those user high ports defined (i dont want to allow connections from system to all ports-if i allow all outbound connections it works ofcourse)... so it make sense it dont work |BUT| IT ACTUALLY DOES WHEN FTP IS AT PORT 21.

strange, any idea why this can be ? probably some hidden apf config ?

(ofcourse it works fine for passive, cos i can define which ports will be used in both ftp & apf, but i need active connection)

thank you

-dex
 
Old 05-08-2005, 01:34 PM   #2
Half_Elf
LQ Guru
 
Registered: Sep 2001
Location: Montreal, Canada
Distribution: Slackware; Debian; Gentoo...
Posts: 2,163

Rep: Reputation: 46
apf probably made you a firewall script that allow port 21 but block port 8321... you better take a look at the script it created.

Btw, using an "easy firewall tool" is a good way to get unknow problem like that at my opinion. If you want a firewalling script, the best way is to make your own yourself at my opinion. It's not very hard and it will work waaaay better.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
APF blocking tracerts question htmlcoder Linux - Security 2 03-06-2005 09:36 AM
Port Blocking adtomar Linux - Networking 6 12-14-2004 03:35 AM
port blocking BwiNfon Linux - Security 4 09-25-2003 10:51 AM
ftp port blocking tarak4u Linux - Networking 4 09-22-2003 04:48 AM
port blocking EyaL Linux - Security 3 10-19-2002 08:58 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 04:40 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration