[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[cobalt-users] raq4 ipchains firewall and ftp
- Subject: [cobalt-users] raq4 ipchains firewall and ftp
- From: "Andras Kende" <andras@xxxxxxxxx>
- Date: Fri Dec 13 11:15:59 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
I have firewall on a raq4 with the following ipchains rules:
ipchains -A input -i eth0 -p tcp --destination-port 20:21 --syn -j
ACCEPT -l
ipchains -A input -i eth0 -p tcp --destination-port 22 --syn -j ACCEPT
-l
ipchains -A input -i eth0 -p tcp --destination-port 25 --syn -j ACCEPT
ipchains -A input -i eth0 -p tcp --destination-port 53 --syn -j ACCEPT
ipchains -A input -i eth0 -p tcp --destination-port 80 --syn -j ACCEPT
ipchains -A input -i eth0 -p tcp --destination-port 81 --syn -j ACCEPT
-l
ipchains -A input -i eth0 -p tcp --destination-port 110 --syn -j ACCEPT
ipchains -A input -i eth0 -p tcp --destination-port 443 --syn -j ACCEPT
ipchains -A input -i eth0 -p tcp --syn -j DENY -l
ipchains -A input -i eth0 -p tcp -j ACCEPT
ipchains -A input -i eth0 -p udp --destination-port 53 -j ACCEPT
ipchains -A input -i eth0 -p udp --source-port 53 -j ACCEPT
ipchains -A input -i eth0 -p udp --source-port 161 -j ACCEPT
ipchains -A input -i eth0 -p udp --source-port 123 -j ACCEPT
ipchains -A input -i eth0 -j DENY -l
Everything working well except my raqbackup.sh ftp upload to a remote
ftp server.
I guess need to open some more ports, now it hangs after "200 PORT..."
as below.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
200 PORT command successful.
Any help appreciated.
Thanks,
Andras Kende