• Open FTP Port 21 and 20 in Iptables firewall

    Task load required iptables modules

    First login as the root user.

    Next type the following command to load two iptables modules:
    # modprobe ip_conntrack
    # modprobe ip_conntrack_ftp

    Now add following iptables rules for incoming request on port 21 (open port 21) to your script:
    X.X.X.X :is server IP

    iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d X.X.X.X --dport 21 -m state --state NEW,ESTABLISHED -j ACCEPT
    iptables -A OUTPUT -p tcp -s X.X.X.X --sport 21 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT

    AND:

    iptables -A INPUT -p tcp -s 0/0 --sport 1024:65535 -d X.X.X.X --dport 1024:65535 -m state --state ESTABLISHED,RELATED -j ACCEPT
    iptables -A OUTPUT -p tcp -s X.X.X.X --sport 1024:65535 -d 0/0 --dport 1024:65535 -m state --state ESTABLISHED -j ACCEPT

    AND:

    iptables -A OUTPUT -p tcp -s X.X.X.X –sport 20 -d 0/0 –dport 1024:65535 -m state –state ESTABLISHED,RELATED -j ACCEPT iptables -A INPUT -p tcp -s 0/0 –sport 1024:65535 -d X.X.X.X –dport 20 -m state –state ESTABLISHED -j ACCEPT

    Categories: Fireawall

    Comments are currently closed.