Re: Vsftpd vs. iptables firewall script

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] 

Hi,

Try "iptables -I INPUT" for your FTP rule.

--
Sent from the Delta quadrant using Borg technology!

Nux!
www.nux.ro

----- Original Message -----
> From: "Nicolas Kovacs" <info@xxxxxxxxxxxxx>
> To: "CentOS mailing list" <centos@xxxxxxxxxx>
> Sent: Wednesday, 23 May, 2018 15:24:45
> Subject:  Vsftpd vs. iptables firewall script

> Hi,
> 
> I'm currently setting up a local FTP server, to receive disk images sent
> with G4L (Ghost4Linux).
> 
> This server has been running Slackware Linux before, and the Vsftpd
> setup was relatively simple.
> 
> With CentOS things seem to be slightly different, so I'm currently
> trying to work things out. For the moment, two things seem to be
> creating problems, the simple iptables firewall and SELinux.
> 
> When I disable the firewall and SELinux, Vsftp works as expected. So far
> so good.
> 
> Now let's tackle this one dragon at a time. First the firewall. I'm
> starting with a very simple firewall script that looks somewhat like
> this. I'm linking to the template, I won't copy/paste the whole thing here.
> 
> https://github.com/kikinovak/centos-7-server-lan/blob/master/config/firewall/firewall-standalone.sh
> 
> Under Slackware, the iptables rule for a local FTP server looked like this:
> 
>  modprobe ip_conntrack
>  iptables -A INPUT -p tcp -i $IFACE_LAN --dport 21 -j ACCEPT
> 
> I tried this, but to no avail. Can't connect to my server. I googled a
> bit, and I found out that there seem to be quite many different answers
> about the subject of "how do I configure my firewall for Vsftpd".
> 
> Any suggestions ?
> 
> Niki
> 
> --
> Microlinux - Solutions informatiques durables
> 7, place de l'église - 30730 Montpezat
> Site : https://www.microlinux.fr
> Blog : https://blog.microlinux.fr
> Mail : info@xxxxxxxxxxxxx
> Tél. : 04 66 63 10 32
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxx
> https://lists.centos.org/mailman/listinfo/centos
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
https://lists.centos.org/mailman/listinfo/centos
[Index of Archives]     [CentOS]     [CentOS Announce]     [CentOS Development]     [CentOS ARM Devel]     [CentOS Docs]     [CentOS Virtualization]     [Carrier Grade Linux]     [Linux Media]     [Asterisk]     [DCCP]     [Netdev]     [Xorg]     [Linux USB]

  Powered by Linux