Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
but what if i want to allow ftp access from inside my Network (192.168.0.0)
when 192.168.0.254 is ftp server in my network
please reply
First of all enable port 21.
Then allow port 20 to go out to any other port (normal ftp port mode)
and allow all port > 1024 to acces the ftp server ports > 1024 (passive ftp mode)
How can I block incoming (FORWARD) ftp access to 10.150.125.0/24 and 172.16.136.0/24?
Because there are multiple networks I assume there is a Linux router with multiple interfaces which is used as the firewall for all private networks and then you have to use the forward chain on this router. If you have one system directly connected to the internet then you are right and you have to use the input chain. You also might drop all connections on the ftp servers from the outside. But then you have to create sophisticated iptables rules so you can access the ftp server from the internal net. If you drop forwarding on the Linux router that's much easier.
u did the excellent job. Its great.. So what i understood from this discussion is ..
1. In case of ftp is running in local network we use FORWARD on Linux router
2. In case of ftp is running same box as of Linux router we use INPUT
is it right sir?
I have the 2nd case means my Linux box is directly connected to the internet through DSL
its Linux router as well as ftp server/telnet server.So i think i have to use INPUT chain instead of FORWARD. Right?
Please reply
thanks for help again
Last edited by KinnowGrower; 08-12-2008 at 12:01 PM.
... I have the 2nd case means my Linux box is directly connected to the internet through DSL
its Linux router as well as ftp server/telnet server.So i think i have to use INPUT chain instead of FORWARD. Right?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.