On Sunday 14 March 2004 9:49 pm, Bo Jacobsen wrote:
> I have a problem allowing forwarding of passive internal ftp traffic and,
> at the same time disallowing ms-streaming (port 1755).
>
> Whenever I allow the passive ftp, it also allows ms-streaming going
> through.
>
> My rules are:
>
> iptables -A FORWARD -m state --state NEW,ESTABLISHED -s local_lan --sport
> highports --dport ftp -j ACCEPT
> iptables -A FORWARD -m state --state ESTABLISHED,RELATED -s local_lan
> --sport highports --dport highports -j ACCEPT
Those cannot be all of your rules.
Show us the rest of the rules and we might be able to suggest something.
Antony.
--
Normal people think "If it ain't broke, don't fix it".
Engineers think "If it ain't broke, it doesn't have enough features yet".
Please reply to the list;
please don't CC me.
