Have you loaded the ftp modules? modprobe ip_conntrack_ftp modprobe ip_nat_ftp
-chaz
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of Agile Aspect Sent: Tuesday, January 27, 2009 6:45 PM To: CentOS mailing list Subject: Re: [CentOS] ftp and iptables
Robert Spangler wrote:
Do you have a rule like this:
-A OUTPUT --m state --state RELATED,ESTABLISHED -j ACCEPT
No I don't.
It doesn't work under CentOS 5.2. But it works on my laptop which is running Fedora 9.
If not you should place this in your rules. This rule eleminates the need
to
continuesly add rules to allow out going connection for allowed incoming connection.
If you do then you should not need the OUTPUT rules you listed above.
Thanks for the reply!