On Fri, 2003-03-28 at 15:40, Budai Laszlo wrote: > Chain FORWARD (policy ACCEPT) <snipped the rest> > ACCEPT tcp -- 192.168.101.0/24 anywhere tcp dpt:ftp > ACCEPT tcp -- 192.168.101.0/24 anywhere tcp dpt:ftp-data > DROP tcp -- 192.168.101.0/24 anywhere <snipped more> > but ftp trough the firewall still does not work. :( > what is wrong? I would think that the replying packets can't get back. Try putting a: iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT -- Vincent Lim <vincent.lim@xxxxxxxxxx> NESTAC Solution Sdn Bhd
