Hi, The flashfxp util probably uses the passive ftp protocol. This will open some higher port for the actual data connection.
What I had to do to get passive ftp up and running behind my bering firewall was the following: add the following lines to /etc/shorewall/rules DNAT net loc:xxx.xxx.xxx.xxx tcp 20,21 DNAT net: loc:xxx.xxx.xxx.xxx tcp 60000:65535 with the xxx's your internal ftp server ip. Now tell your ftp daemon to use the ports 60000 to 65535 for passive connections. I use proftpd and I added the following to the /etc/proftpd.conf file: NOTE that with this setting you open your FTP server for ALL internet hosts. PassivePorts 60000 65535 see also http://proftpd.linux.co.uk/localsite/Userguide/linked/config-nat.html I did not have to use the MasqueradeAddress setting reffered to in the above URL. Hope this helps. Regards Chera Bekker On Fri February 7 2003 21:10, [EMAIL PROTECTED] wrote: > > hi, > here's my problem. > > I'm running a small network with a bering 1.0 router as gatway to the > internet. > Behind the router are several other computers including a linux ftp server > running wu-ftpd. > I setup shorewall to forward both ftp ports to the ftp server and with this > normal ftp transfers worked well. > But now someone wants to send me some files from another ftp via flashfxp. > The problem is that the other ftp server wants to open a data connection on > an arbitrary port (over 30000) and my firewall is rejecting this > connection. I read somewhere that the connection tracking module is not > able to handle the fxp protocol, but i wonder if there is any solution to > this problem. > > thanks for your help ------------------------------------------------------- This SF.NET email is sponsored by: SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See! http://www.vasoftware.com ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
