Menu
▾
▴
[Shorewall-users] Problems with FTP to one host
|
From: <mi...@at...> - 2003-11-29 01:52:05
|
Using Mandrake 9.2, shorewall 1.4.6c. Everything was working fine until one of the web servers I manage content for (my astronomy club, http://www.starastronomy.org) was "upgraded" to the newset win2K. All of a sudden I can FTP into the machine, but I can't "ls" or "put" files. I *can* do these things if I turn off my policy of "DROP" for net to fw conncetions, and and *can* do every FTP command to every other machine, just not this one. I can't for the life of me figure out why this doesn't match my rule. Here's what shorewall says on startup: ... Processing /etc/shorewall/rules... Rule "ACCEPT net fw tcp 80,443,22,20,21 -" added. Processing /etc/shorewall/policy... Policy ACCEPT for fw to net using chain fw2net Policy DROP for net to fw using chain net2all ... and when I FTP and try an "ls", shorewall logs: Shorewall:net2all:DROP:IN=eth0 OUT= MAC=00:b0:d0:e7:64:8a:00:20:78:db:5c:c7:08:00 SRC=64.19.189.166 DST=192.168.1.102 LEN=48 TOS=0x08 PREC=0x00 TTL=114 ID=59474 DF PROTO=TCP SPT=20 DPT=35643 WINDOW=16384 RES=0x00 SYN URGP=0 I'd appreciate any help or pointers. I didn't find anything in the FAQ or archives that helped me. I am not subscribed to this list, so please CC me on responses. Thank you. -- Michael Lindner |