On Saturday 19 January 2002 03:34 am, Christophe Zwecker wrote:
> ok Im all new to this :-)
> for pasv ftp in your example you say for example to use ports
> 65500-65535, but i dont see that u open those ports in your example fw
> any hints ?
I don't have to open them -- they will be opened dynamically at the time =
the PASV command. This of course assumes ftp connection tracking in your=20
kernel or that you have loaded the ip_conntrack_ftp module.
Tom Eastep \ A Firewall for Linux 2.4.*
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@...