but active ftp also requires you to open port 20/tcp inbound to highports/tcp, since the ftpserver will initiate a connection from port 20 to port N+1 (where N is the highport your computer chose when initiate a connection to the ftp server on port 21 (cmd).
A great readthrough would be "Active FTP vs. Passive FTP, a Definitive Explanation": http://www.slacksite.com/other/ftp.html /christopher thorjussen ----- Original Message ----- From: "Tony Hebert" <[EMAIL PROTECTED]> To: "Bob Surenko" <[EMAIL PROTECTED]> Cc: "Ron Darling" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Monday, March 11, 2002 11:15 PM Subject: Re: FTP Software error with IPTables > make sure you are loading the ip_nat_ftp and the ip_conntrack_ftp modules. > otherwise active ftp will never work > > > > "What are the best things in life?" > > "To Crush your Enemies, > See them Driven before You, > And Hear the Lamentations of the Women." > > - Conan the Barbarian > > > > > >
