Dragos Traian Georgescu wrote:
>
> Jack Timofte wrote:
> >
> > e normal sa-ti crape :-).
> > pentru ca ftp foloseste conexiuni separate pentru transfer (asta include
> > get, put, DIR (!)).
> > de altfel, daca dai numai cd, pwd o sa-ti mearga cu regulile tale.
OK, am rezolvat! Iata si rezolvarea, zic eu eleganta.
#FTP servers
#Incoming request
for ip in `echo $ftp_servers` ;do
/sbin/ipchains -A input -i $If_pub -p TCP -s 0/0 1024: -d $ip 21 -j
ACCEPT
/sbin/ipchains -A output -i $If_pub -p TCP ! -y -s $ip 21 -d 0/0
1024: -j ACCEPT
done
#PORT MODE data channel responses
for ip in `echo $ftp_servers` ;do
/sbin/ipchains -A input -i $If_pub -p TCP ! -y -s 0/0 1024: -d $ip
20 -j ACCEPT
/sbin/ipchains -A output -i $If_pub -p TCP -s $ip 20 -d 0/0 1024: -j
ACCEPT
done
#PASSIVE MODE data channel responses
for ip in `echo $ftp_servers` ;do
/sbin/ipchains -A input -i $If_pub -p TCP -s 0/0 1024: -d $ip 1024:
-j ACCEPT
/sbin/ipchains -A output -i $If_pub -p TCP ! -y -s $ip 1024: -d 0/0
1024: -j ACCEPT
done
GTD
---
Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to
unsubscribe from this list.
