LinuxSA Mailing list archives

Index: [thread] [date] [subject] [author] [stats] 
  From: Jim O <jim@kendle.com.au>
  To  : Wayne Simes <wlsimes@tell.net.au>
        <linuxsa@linuxsa.org.au>
  Date: Wed, 8 May 2002 09:19:00 +0930

RE: Firewall and FTP'ing

This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.

------_=_NextPart_001_01C1F621.C300A990
Content-Type: text/plain;
	charset="ISO-8859-1"

If you're running iptables, try looking at connection tracking module...
http://www.cs.princeton.edu/~jns/security/iptables/iptables_conntrack.html
<http://www.cs.princeton.edu/~jns/security/iptables/iptables_conntrack.html>;
has the details.
 
Jim.
 

-----Original Message-----
From: Wayne Simes [mailto:wlsimes@tell.net.au]
Sent: Tuesday, 7 May 2002 18:17
To: linuxsa@linuxsa.org.au
Subject: Firewall and FTP'ing


Hi All
 
I have opened up ports 20 and 21 to allow for ftp'ing through to the server,
but I have noticed in the logs that the client is trying to make connections
to ports up in the 3000 and 6000 range. I don't really want to open up a
whole range of port just to allow the odd person to connect.
 
What should I be doing to try and get around this problem ?
 
 
Wayne


------_=_NextPart_001_01C1F621.C300A990
Content-Type: text/html;
	charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3DISO-8859-1">


<META content=3D"MSHTML 5.50.4807.2300" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><SPAN class=3D976073823-07052002><FONT face=3DArial =
color=3D#800080 size=3D2>If=20
you're running iptables, try looking at connection=20
tracking module...  <A=20
href=3D"http://www.cs.princeton.edu/~jns/security/iptables/iptables_conn=
track.html">http://www.cs.princeton.edu/~jns/security/iptables/iptables_=
conntrack.html</A> has=20
the details.</FONT></SPAN></DIV>
<DIV><SPAN class=3D976073823-07052002><FONT face=3DArial =
color=3D#800080=20
size=3D2></FONT></SPAN> </DIV>
<DIV><SPAN class=3D976073823-07052002><FONT face=3DArial =
color=3D#800080=20
size=3D2>Jim.</FONT></SPAN></DIV>
<DIV><SPAN class=3D976073823-07052002></SPAN> </DIV>
<BLOCKQUOTE dir=3Dltr style=3D"MARGIN-RIGHT: 0px">
  <DIV class=3DOutlookMessageHeader dir=3Dltr align=3Dleft><FONT =
face=3DTahoma=20
  size=3D2>-----Original Message-----<BR><B>From:</B> Wayne Simes=20
  [mailto:wlsimes@tell.net.au]<BR><B>Sent:</B> Tuesday, 7 May 2002=20
  18:17<BR><B>To:</B> linuxsa@linuxsa.org.au<BR><B>Subject:</B> =
Firewall and=20
  FTP'ing<BR><BR></FONT></DIV>
  <DIV><FONT face=3DArial size=3D2>Hi All</FONT></DIV>
  <DIV><FONT face=3DArial size=3D2></FONT> </DIV>
  <DIV><FONT face=3DArial size=3D2>I have opened up ports 20 and 21 to =
allow for=20
  ftp'ing through to the server, but I have noticed in the logs that =
the client=20
  is trying to make connections to ports up in the 3000 and 6000 range. =
I don't=20
  really want to open up a whole range of port just to allow the odd =
person to=20
  connect.</FONT></DIV>
  <DIV><FONT face=3DArial size=3D2></FONT> </DIV>
  <DIV><FONT face=3DArial size=3D2>What should I be doing to try and =
get around this=20
  problem ?</FONT></DIV>
  <DIV><FONT face=3DArial size=3D2></FONT> </DIV>
  <DIV><FONT face=3DArial size=3D2></FONT> </DIV>
  <DIV><FONT face=3DArial =
size=3D2>Wayne</FONT></DIV></BLOCKQUOTE></BODY></HTML>

------_=_NextPart_001_01C1F621.C300A990--

-- 
LinuxSA WWW: http://www.linuxsa.org.au/  IRC: #linuxsa on irc.linux.org.au
To unsubscribe from the LinuxSA list:
  mail linuxsa-request@linuxsa.org.au with "unsubscribe" as the subject
Index: [thread] [date] [subject] [author] [stats]
Return to the LinuxSA Mailing List Information Page