> ... but the connection takes a long time to terminate. If I disable all > the rules, ftp connection goes directly but with iptables enabled it > takes such 8 seconds to accomplish the annonymomus connection ( with > data port and passive models ). > > What is this all about ??? > > Regards > Vincent your server is trying to do a reverse DNS lookup on the IP address of the connecting client. either disable reverse lookups on your FTP server, or allow it to resolve DNS through your firewall. -j
