[Firehol-support] ftp on non-standard port
Andreas Unterkircher
unki at netshadow.at
Wed Nov 12 10:23:18 GMT 2008
Hello,
FTP-Server on a non-standard port - anyone got this working with firehol?
The remote FTP server has its control channel on a non-standard port -
7777/tcp.
I already adapted my modules-file and ip_conntrack_ftp gets loaded with
the parameter ports=21,7777.
I configured an additional service for firehol:
server_ftp2_ports="tcp/7777"
client_ftp2_ports="default"
and used it like this:
router LAN2INET
tcpmss auto
protection strong
route "ftp2" accept dst "1.1.1.1"
While connecting to the control channel works perfect, the data channel
can not be established. But it seems, that those packets are never passing
to the necessary RELATED rules in iptables (at least the counter remain at
zero).
Any ideas?
Cheers,
Andreas
More information about the Firehol-support
mailing list