LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-03-2005, 10:35 PM   #1
embsupafly
Member
 
Registered: Nov 2002
Location: ARIZONA
Distribution: Ubuntu
Posts: 44

Rep: Reputation: 15
APF Firewall Rule Help


I am running a Linux server with CPanel, using APF as the firewall (interface).

We are trying to run FTP over SSL (TLS) or otherwise known as FTPS (not SFTP), these are different. SFTP uses SSH port 22, whereas FTPS uses a secure web certificate and ports 989-990 (I believe, and this is the issue at hand).

When we turn the firewall on, we are not able to FTPS successfully. When we stop the firewall, all connections and transfers are successful, leading me to believe (almost positive) that it is a firewall ruleset issue.

We are allowing standard ports such as 21,22,80, etc and others to be open because it is a web/mail/ftp/ssh server, and we have also allowed incoming ports 989-990 to be open for FTPS.

When we do a portscan with NMAP, the ports show up (989-900) in the ports list, but they do not show open, they show closed. Why are they closed if the firewall is allowing these incoming connections?

Thanks,

Eric
 
Old 03-08-2005, 11:00 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 69
How do you "allow" the additional ports for FTPS in APF?

At the comandline as root try:
iptables -I INPUT -p tcp --dport 989:900 -j ACCEPT

Note that in you're above post you listed 2 different port ranges (989-990 and 989-900), but I'm assuming you meant the second one.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
NIS behind apf firewall how to ravikumarG Linux - Networking 1 05-09-2005 04:21 PM
Kernel 2.6.x with APF firewall andy18 Linux - General 0 03-16-2005 01:19 PM
APF firewall binumvk Linux - Security 2 10-14-2004 05:12 AM
APF Firewall issue nepcw Linux - Security 2 04-27-2004 02:55 PM
APF Firewall BlackRain Linux - Security 2 06-12-2003 08:40 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:31 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration