Jon wrote: > Hi Tom > > Thanks for replying - especially given your current state of internet > connectivity. > > Maybe I'm misunderstanding the DNAT thing. I thought it would be required to > translate from the external nic to the internal but even as I write this I > can see how little sense that makes. > > I guess what I need to to simply allow TCP 21 connections from both the net > and loc zones. Can't believe that I can't figure it out but I inherited these > boxes and we all probably know it's impossible to get up to speed fast enough. >
Be sure that it is actually the internal server that you are connecting to when you "shorewall clear" and not an FTP server running on the Shorewall box itself. -Tom ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
