-   Linux - Networking (
-   -   FTP client active ports (

Aigarzs 11-19-2010 06:05 PM

FTP client active ports
Good day!

I want to use FTP client (for example ncftp) to connect in active mode.
I have firewall (iptables) on my laptop and most of time I am behind rooter.

With outgoing packets and with passive mode all is working fine.
But some sites accept only active mode.
I could open some port range in firewall and in rooter for active data packets, but I don't know how to solve security issues.

So how should I correctly manage active ftp connection?

How can I set data port range when opening active connection with ncftp (or maybe another ftp client)?
How can I limit that incoming connections to that ports range is accepted only by ncftp or else dropped?

Using Slackware 13.1

eSelix 11-19-2010 06:22 PM

For iptables look in chapter "Complex protocols and connection tracking" But if you have not very advanced router you can only open some range of ports on it and configure ftp client to use only these. As I se ncftp have not that option, but for example lftp has this ability.

All times are GMT -5. The time now is 08:21 AM.