Not allowing incoming ftp through firewall.

crackerB · 08-06-2006, 11:43 PM

Hi, I am using Redhat El4 server as internet Gateway.I have done Natting with Ip-tables. Now, I just want to establish an ftp connection
to a remote server with Public IP.When I tried to do ftp, I was able to
connect to the remote server. But after authentication in the remote server,Connection showing as ,going to passive mode and Freezing.
Any body can help me ,what modifications should i do in the firewall
to allow incoming ftp from my client pc's.

billymayday · 08-07-2006, 12:59 AM

Do you have an ESTABLISHED,RELATED rule in your firewall script (I assume you're using iptables). Something like:

$IPTABLES -A INPUT --protocol ALL --match state --state ESTABLISHED,RELATED -j ACCEPT

crackerB · 08-07-2006, 01:13 AM

I have added this rule...
Same error is coming..I am using IP-tables.

Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
227 Entering Passive Mode (68,236,176,122,228,130)

billymayday · 08-07-2006, 01:25 AM

I don't know the wisdom of this, so your call, but you could try with the firewall down to see if it works - at least would rule firewall issue out.

BUT, before you think about the point above, is port 20 open - I think this is required for active ftp.

crackerB · 08-07-2006, 01:38 AM

Can you please help me to open the port 20.with adding rule..

Matir · 08-07-2006, 01:41 AM

Is the remote server also behind a firewall? Passive FTP should always work if your OUTPUT policy is 'ACCEPT'.

crackerB · 08-07-2006, 01:51 AM

Thanks..for coming in..
Remote server is using active ftp.is a free BSD Server.
Now I am able to ftp from my clients..But Showing problem
When I used gftp graphics tool..(After connection establised
entering to passive mode..)