I've replaced the rpm, and restarted the server, and I'm still locked out. So I want to try the addition of the line in iptables. However, I'm not sure of what $EXT_IF means. I'm assuming that $FTP_PORTS are ports 21 and 20, and that they go in the user rules I have defined. Is EXT_IF the external interface, and is that value something like eth0 or lo?
Also, would a reboot help on this?
Thanks,
-Bob
Pete Nesbitt wrote:
On December 18, 2003 06:56 am, Bob Smith wrote:
That sounds like you've found the cause and solution. If not, (or anyway) you should check your logs, and also add a LOG entry to the firewall DENY or REJECT line to see whats happening at the firewall.
Depending on your exact rules, add something like this, just blow your FTP ACCEPT Rules, and ABOVE the RETURN line in a user chain, as in:
ftp accept rules...
$IPTABLES -A FTP_CHAIN -p tcp -m state --state NEW -i $EXT_IF \
--dport $FTP_PORTS -j LOG --log-prefix "NetF FTP Failure: "
... RETURN if in user chain
...then the drop line later in rules
-- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
