I had a similar problem before. Actually, if you have waited a little longer, you'll realize that it did not stop. It just can't establish a PASV mode ftp connection and will return to normal ftp mode. What FTPD are you using anyway? I'm using ProFTPD before but I'm planning to migrate to vsFTPD.
In your iptables script, you may also have to include a stateful packet filter. iptables -A INPUT -m state --state RELATED -j ACCEPT This is to the nature of FTP opening another port for data transfer (in PASV mode, the server opens this one). Of course you have to allow port 21 too. iptables -A INPUT -p tcp -m tcp --dport 21 -j ACCEPT Also, try using an FTPD that can handle PASV mode very well. Try vsFTPD. On Mon, 2003-06-30 at 17:08, a cedie boyet alben benavente alteza EL alben wrote: > Does anybody knows how to allow ftp access through iptables? I have a hard > time doing it. Actually I can connect through port 21 but when I need to do > list or any data transaction, it stop. > > can anyone help? > > thanks in advance > -- > Alben Benavente Alteza > -- > Philippine Linux Users' Group (PLUG) Mailing List > [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) > Official Website: http://plug.linux.org.ph > Searchable Archives: http://marc.free.net.ph > . > To leave, go to http://lists.q-linux.com/mailman/listinfo/plug > . > Are you a Linux newbie? To join the newbie list, go to > http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
