From: <bj...@us...> - 2011-03-30 08:04:02
|
Revision: 9616 http://unicore.svn.sourceforge.net/unicore/?rev=9616&view=rev Author: bjoernh Date: 2011-03-30 08:03:55 +0000 (Wed, 30 Mar 2011) Log Message: ----------- added iptables configuration example; corrected section levels for asciidoc Modified Paths: -------------- uftp/trunk/README.txt Modified: uftp/trunk/README.txt =================================================================== --- uftp/trunk/README.txt 2011-03-29 20:52:49 UTC (rev 9615) +++ uftp/trunk/README.txt 2011-03-30 08:03:55 UTC (rev 9616) @@ -44,7 +44,7 @@ -------------------- Prerequisites -+++++++++++++ +~~~~~~~~~~~~~ - Java 1.6 is required @@ -53,7 +53,7 @@ Starting and stopping the UFTPD server -++++++++++++++++++++++++++++++++++++++ +~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ In the bin/ directory, start/stop and status scripts are provided. The parameters such as server host/port, control host/port are @@ -65,7 +65,7 @@ Configuration parameters -++++++++++++++++++++++++ +~~~~~~~~~~~~~~~~~~~~~~~~ The following variables can be defined in the configuration file (uftpd.conf): @@ -83,9 +83,24 @@ If possible, use an "internal" interface for the Command socket. If that is not possible, make sure the Command socket is protected by a firewall! +Firewall configuration +~~~~~~~~~~~~~~~~~~~~~~ +With Linux iptables, you may use rules similar to the following: + +------------- +iptables -A INPUT -p tcp -m tcp --dport $SERVER_PORT -j ACCEPT +iptables -A INPUT -p tcp -m helper --helper ftp-$SERVER_PORT -j ACCEPT +------------- + +where $SERVER_PORT is the SERVER_PORT defined in uftpd.conf. The first +rule allows anyone to access port $SERVER_PORT. The second rule +activates the iptables connection tracking FTP module on port +$SERVER_PORT. + + UNICORE Integration -+++++++++++++++++++ +------------------- Enabling the UFTP service ~~~~~~~~~~~~~~~~~~~~~~~~~ This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site. |