Page 3 of 4 FirstFirst 1234 LastLast
Results 21 to 30 of 35

Thread: Port Forwarding

  1. #21
    Join Date
    Oct 2009
    Location
    Halifax, PA
    Beans
    105
    Distro
    Xubuntu 10.04 Lucid Lynx

    Re: Port Forwarding

    Here's a command to use: iptables -nvL

    I've got Church coming up, so i'll check you later. --Eric
    Last edited by ermeyers; October 4th, 2009 at 12:10 PM. Reason: later

  2. #22
    Join Date
    Apr 2006
    Beans
    23

    Re: Port Forwarding

    DOnt think it needs passive to send the ftp header.
    2nd command, gives the same result ( filtered ).
    Tryied the 3rd command, same result.


    server:/home/jen140# iptables -nvL
    Chain INPUT (policy ACCEPT 17187 packets, 1626K bytes)
    pkts bytes target prot opt in out source destination
    2 80 ACCEPT all -- eth0 * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED

    Chain FORWARD (policy ACCEPT 93376 packets, 88M bytes)
    pkts bytes target prot opt in out source destination

    Chain OUTPUT (policy ACCEPT 19478 packets, 9026K bytes)
    pkts bytes target prot opt in out source destination
    server:/home/jen140#
    Last edited by jen140; October 4th, 2009 at 12:20 PM.

  3. #23
    Join Date
    Oct 2009
    Location
    Halifax, PA
    Beans
    105
    Distro
    Xubuntu 10.04 Lucid Lynx

    Re: Port Forwarding

    I've gotto go until after 12 noon EST. http://www.linuxquestions.org/questi...-the-nat-92579 has a lot of stuff:

    # open ports to the firewall
    echo " applying the open port(s) to the firewall rules"
    echo ""
    $iptables -A INPUT -p tcp --dport 21 -j ACCEPT

    # enable passive ftp transfers
    echo " opening passive FTP ports"
    echo ""
    $iptables -A INPUT -p tcp --sport 5151 --dport 5151 -m state --state ESTABLISHED -j ACCEPT
    $iptables -A OUTPUT -p tcp --sport 5151 --dport 5151 -m state --state ESTABLISHED,RELATED -j ACCEPT

    # enable active ftp transfers
    echo " opening active FTP ports"
    echo ""
    $iptables -A INPUT -p tcp --sport 20 -m state --state ESTABLISHED,RELATED -j ACCEPT
    $iptables -A OUTPUT -p tcp --dport 20 -m state --state ESTABLISHED -j ACCEPT

    Let me know, if you get it. --Eric

  4. #24
    Join Date
    Apr 2006
    Beans
    23

    Re: Port Forwarding

    I've run iptables -A INPUT -p tcp --dport 21 -j ACCEPT
    And nmap-online.com still reports its filtered =(.
    Tryied also the rest commands:
    iptables -A INPUT -p tcp --sport 5151 --dport 5151 -m state --state ESTABLISHED -j ACCEPT
    iptables -A OUTPUT -p tcp --sport 5151 --dport 5151 -m state --state ESTABLISHED,RELATED -j ACCEPT
    iptables -A INPUT -p tcp --sport 20 -m state --state ESTABLISHED,RELATED -j ACCEPT
    iptables -A OUTPUT -p tcp --dport 20 -m state --state ESTABLISHED -j ACCEPT
    Same state, filtered, but the interesting part is that now its not showing other ports that were filtered 135,139,445.
    Maybe the nmap-online scanner doesnt work as it should?
    I always thougth that port forwarding under linux was much easier than in windows ( cause there we need external apps ), and the ideia of rebooting also reminds me of windows.
    Last edited by jen140; October 4th, 2009 at 01:56 PM.

  5. #25
    Join Date
    Apr 2006
    Beans
    23

    Re: Port Forwarding

    So, any ideias ?

  6. #26
    Join Date
    Oct 2009
    Location
    Halifax, PA
    Beans
    105
    Distro
    Xubuntu 10.04 Lucid Lynx

    Re: Port Forwarding

    Unfortunately my DSL provider has me hidden inside a 192.168.1.0 network, so I can't emulate the outside too well. Between the two machines in my LAN, I'll try to see what works. So, I'll have to get back with you. Keep trying.

  7. #27
    Join Date
    Apr 2006
    Beans
    23

    Re: Port Forwarding

    Mirror of the post on debian forum : http://forums.debian.net/viewtopic.php?f=10&t=45715

  8. #28
    Join Date
    Oct 2009
    Location
    Halifax, PA
    Beans
    105
    Distro
    Xubuntu 10.04 Lucid Lynx

    Re: Port Forwarding

    Did some investigating with regard to iptables and package ufw. Verify "ufw status" is "Status: inactive". In /etc/sysctl.conf it has "net.ipv4.ip_forward=1" uncommented, and /etc/ufw/sysctl.conf it has "#net/ipv4/ip_forward=1" commented.

  9. #29
    Join Date
    Apr 2006
    Beans
    23

    Re: Port Forwarding

    bash: ufw: command not found
    # cat /etc/sysctl.conf |grep ip_fo
    net.ipv4.ip_forward=1
    Ip forwarding works.

  10. #30
    Join Date
    Apr 2006
    Beans
    23

    Re: Port Forwarding

    The problem is still not solved, arent there any pro linux admins out here?

Page 3 of 4 FirstFirst 1234 LastLast

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •