firewall entries needed for active FTP connections for linux hosts running recent kernels

by .pQd
Uncategorized, unimportant

after upgrade to debian stretch i had to add the following firewall entries:

for the FTP servers:

iptables -t raw -A PREROUTING -p tcp --dport 21 -j CT --helper ftp

for the nat-routers between FTP servers and FTP clients:

iptables -t raw -A PREROUTING -p tcp --dport 21 -j CT --helper ftp

for the FTP clients:

iptables -t raw -A OUTPUT -p tcp --dport 21 -j CT --helper ftp

related articles:

Leave a Reply

Your email address will not be published. Required fields are marked *

(Spamcheck Enabled)