FTP acces from the Outside
Thu, 14 Jun 2001 22:33:24 +0200
You will need to open up tcp port 20 as well. 21 is used for controlling
ftp, 20 to handle any data if I'm not mistaken.
ftp-data 20/tcp #FTP, data
ftp 21/tcp #FTP, control
----- Original Message -----
From: "Patrick Boucher" <email@example.com>
To: "netfilter" <firstname.lastname@example.org>
Sent: Thursday, June 14, 2001 8:35 PM
Subject: FTP acces from the Outside
> RedHat 7.0
> Iptables 1.2.1
> I am running a Firewall / NAT on one machine that have an FTP site.
> Behind that machine there is another FTP server.
> What is the Easy way to give acces to external people acces to my
> internal machine (192.168.1.2 port 21)
> I have setup the line :
> iptables -A INPUT -i $EXTERNAL -p tcp -s $ANY -d $PUBLIC_IP --dport 2121
> -j ACCEPT
> But people cannot do 'LS'
> - They get connected fine. (Username, password)
> - There are no error in /var/log/messages
> - When i try to do LS, I get the error: 425 Can't build Data connection:
> Connection refused
> I think all i need is to allow Communication, but I cannot found the
> Thank you !
> Patrick Boucher