[ale] FTP/firewall issue
Bob Kruger
krugerb at benning.army.mil
Tue Jul 3 09:34:08 EDT 2001
Peter Ekstrom wrote:
> Bob,
>
> I'm not sure how you'd do this with iptables but I had the same problem with
> ipchains. The way I found to fix it was as follows:
>
> EXTIF=eth1
> ANY=0.0.0.0/0
>
> ipchains -A input -i $EXTIF -p tcp -s $ANY 1024: -d $ANY 20 -y -j ACCEPT
> ipchains -A input -i $EXTIF -p tcp -s $ANY 1024: -d $ANY 20 -j ACCEPT
> ipchains -A input -i $EXTIF -p tcp -s $ANY 1024: -d $ANY 21 -y -j ACCEPT
> ipchains -A input -i $EXTIF -p tcp -s $ANY 1024: -d $ANY 21 -j ACCEPT
> ipchains -A input -i $EXTIF -p tcp -s $ANY 20 -d $ANY 1024: -y -j ACCEPT
> ipchains -A input -i $EXTIF -p tcp -s $ANY 20 -d $ANY 1024: -j ACCEPT
> ipchains -A input -i $EXTIF -p tcp -s $ANY 21 -d $ANY 1024: -y -j ACCEPT
> ipchains -A input -i $EXTIF -p tcp -s $ANY 21 -d $ANY 1024: -j ACCEPT
Pete;
This seems to be getting me closer.
Does anyone know what the translation of the "1024:" is from ipchains to iptables?
Regards - Bob Kruger
--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.
More information about the Ale
mailing list