forum.ipfire.org

Hello,
rules seems ok, you must have a service open with port 9600 on IP 10.0.0.80 obviously and you reach it ie http://WANIP:9600 but you need run apache open with port 9600

rigth ?

Andrea T.

Yes, these rules enable the forwarding of the range 1024:65535 also with port added not only for 21 as FTP option in Application Layer Gateway enabled ftp3.jpg Adding the lines the rule iptables -A CONNTRACK -m conntrack --ctstate RELATED -m helper --helper ftp -p tcp --dport 1024: -j ACCEPT is enab...

:) Hi, I have find the solution. I don't know if there is a easier mode like GUI to insert these iptables rules in the CONNTRACK chain than used by me but need to add the port used for alternative FTP ports redirected to port 21 of the server. In /etc/init.d/firewall there is a row like this for por...

Ok, but as I wrote before I can't set the PASV port range (i must redirect from 1024 to 65535 ?) or change FTP-CONTROL port in the device. This is the response of ftp server. ftp2.jpg Our client have 2 of our systems that use this ethernet module placed at least 200 Km air distance connected in 2 di...

Tried with source RED instead of source ANY but the same result.
Connection ok, PASV ok, LIST no more communication.
With port 21 to 21 ok as before.

Andrea T.

Hello,
fwrules FTP Layer is ON

Andreas T.

Hello, unfortunately I can't set also any PASV port limit and other data on server, I havent "real servers" they are on Xport by Lantronix. May be IpFire not able to made these services ? Why if I use port 21 to port 21 it run without problems ? Our client made this service to 2 server from single p...

Hello, I'm trying to forward FTP service from RED to multiple server on GREEN. I tryed to forward various port number to port 21 of the servers like 2121 to 21 server1, 2221 to 21 server2, the login is OK but after LIST command lock until timeout. If I forward port 21 all OK. Why ? What I need to ad...

Hello, I want to create a network in the firewall group to use it in firewall rules instead to write the ip address in the rule. The network is 192.168.0.240 with netmask 255.255.255.240 that is the server zone, but IpFire give me an error and says "This is the RED subnet". If i use as mask 255.255....

1st issue: on the documentation says that need to open the port 80 and the 21 on RED in "incomning firewall access" to reach it from public, but with or without these rules the web/ftp the server is visible from public IP. Have you really tested this from RED? If you try to connect the RED IP from ...

Hello, I'm testing Ipfire to renew our old Ipcop during an puiblic connection change and Now I'm testing VPN connection between the firewall because I need to have two VPN connections with our client. Situation: Puiblic 1 net > Ipcop 2.1.9 > LAN1+DMZ1 Public 2 net > IpFire 2.19 x86_64 - 113 > LAN2+D...