[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Problemer med ftp-adgang gennem iptables firewall



Hejsa!

Jeg har et netfilter script, der ser ud som vedhæftet.

Problemet er, at jeg ikke kan connecte til remote FTP servere.

Jeg prøver at hindre uovervåget adgang til HTTP og FTP servere ved at
tvinge dem til at gå via squid.

Jeg kan godt få forbindelse fra firewallen.

Men hvis jeg prøver fra de andre får jeg noget lignende:

ftp ftp.etellerandet
Connected to ftp.etellerandet.
220-FTP server ready.
220 This is a private system - No anonymous login
Name (ftp.etellerandet:jan): minbruger
331 User minbruger OK. Password required
Password:
230-User minbruger has group access to:  etellerandet
230 OK. Current restricted directory is /
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> passive
Passive mode on.
ftp> send *.php
local: index.php remote: index.php
227 Entering Passive Mode (xxx,xx,xxx,xx,xxx,xxx)
ftp: connect: Connection timed out

og firewallen siger :

Mar 17 14:04:45 peter kernel: allow_forward: IN=eth0 OUT=eth1
SRC=192.168.100.yy DST=xxx.xx.xxx.xx LEN=60 TOS=0x00 PREC=0x00 TTL=63
ID=24079 DF PROTO=TCP SPT=33527 DPT=63642 WINDOW=5840 RES=0x00 SYN
URGP=0
Mar 17 14:04:48 peter kernel: allow_forward: IN=eth0 OUT=eth1
SRC=192.168.100.yy DST=xxx.Xx.xxx.xx LEN=60 TOS=0x00 PREC=0x00 TTL=63
ID=24080 DF PROTO=TCP SPT=33527 DPT=63642 WINDOW=5840 RES=0x00 SYN
URGP=0
Mar 17 14:04:54 peter kernel: allow_forward: IN=eth0 OUT=eth1
SRC=192.168.100.yy DST=xxx.xx.xxx.xx LEN=60 TOS=0x00 PREC=0x00 TTL=63
ID=24081 DF PROTO=TCP SPT=33527 DPT=63642 WINDOW=5840 RES=0x00 SYN
URGP=0
Mar 17 14:05:06 peter kernel: allow_forward: IN=eth0 OUT=eth1
SRC=192.168.100.yy DST=xxx.xx.xxx.xx LEN=60 TOS=0x00 PREC=0x00 TTL=63
ID=24082 DF PROTO=TCP SPT=33527 DPT=63642 WINDOW=5840 RES=0x00 SYN
URGP=0
Mar 17 14:05:30 peter kernel: allow_forward: IN=eth0 OUT=eth1
SRC=192.168.100.yy DST=xxx.xx.xxx.xx LEN=60 TOS=0x00 PREC=0x00 TTL=63
ID=24083 DF PROTO=TCP SPT=33527 DPT=63642 WINDOW=5840 RES=0x00 SYN
URGP=0
Mar 17 14:06:18 peter kernel: allow_forward: IN=eth0 OUT=eth1
SRC=192.168.100.yy DST=xxx.xx.xxx.xx LEN=60 TOS=0x00 PREC=0x00 TTL=63
ID=24084 DF PROTO=TCP SPT=33527 DPT=63642 WINDOW=5840 RES=0x00 SYN
URGP=0



 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2006-04-01, 02:03 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *