5

iptables after drop ftp goes through

view full story
linux-howto

http://serverfault.com – I cannot deny access to FTP for a IP address. First of all i needed to deny everything so i did like this: #iptables -F #iptables -P INPUT DROP #iptables -P OUTPUT DROP #iptables -P FORWARD DROP Then I opened FTP: #modprobe ip_conntrack_ftp #iptables -A INPUT -p TCP -i eth0 --dport 21 -m state --state NEW -j ACCEPT #iptables -A INPUT -p ALL -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT #iptables -A OUTPUT -p ALL -o eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT The above works but I have all so tried with this one to: #modprobe ip_conntrack #modprobe ip_conntrack_ftp # (HowTos)