iptables & PASV

Discussion in 'OT Technology' started by johnnywallywallace, Feb 2, 2004.

  1. I seem to be unsuccessful in opening up my linux router's iptables rules to allow myself to connect using PASV ...

    current relevant rules (I think):

    Code:
    iptables -A FORWARD -s 192.168.100.0/24 -d x.x.194.236 -m state --state NEW,ESTABLISHED -j ACCEPT
    iptables -A FORWARD -s x.x.194.236 -d 192.168.100.0/24 -m state --state ESTABLISHED -j ACCEPT
    
    # Active mode - port 20
    iptables -A FORWARD -p tcp -s 192.168.100.0/24 --sport 1024:65535 -d x.x.194.236 --dport 20 -m state --state ESTABLISHED -j ACCEPT
    iptables -A FORWARD -p tcp -s x.x.194.236 --sport 20 -d 192.168.100.0/24 --dport 1024:65535 -m state --state RELATED,ESTABLISHED -j ACCEPT
    
    any iptables gurus around?
     

Share This Page