On Wed, 16 Mar 2022 16:14:10 +0100 Ruud Baart <[email protected]> wrote:
> Hi, > > I can find quite a lot of documentation concerning a FTP server. But > I don't find the way to do it. There is no way to do FTP with TLS/SSL completely secure way. That is because conntrack module must be able to see data port in command packet to open data connection and because TLS encrypts command channel conntrack module can't handle it. That is why FTP has always been horrible option for data transfers with firewalling. FTP is dead - move to SFTP which uses ssh protocol. -- Tuomo Soini <[email protected]> Foobar Linux services +358 40 5240030 Foobar Oy <https://foobar.fi/> _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
