iptables 设置允许被动模式FTP
iptables -P INPUT DROP
iptables -P OUTPUT ACCEPT
# Allow inner Network access
iptables -A INPUT -i ! eth0 -j ACCEPT
iptables -A INPUT -i eth0 -p udp --dport ${Port} -j ACCEPT
iptables -A INPUT -i eth0 -p tcp --dport ${Port} -j ACCEPT
iptables -A INPUT -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT
上边的命令都执行成功后,用FTP工具登录服务器
2006-3-20 14:57:01.140 331 Password required for oracle.
2006-3-20 14:57:01.140 PASS ********
2006-3-20 14:57:01.390 230 User oracle logged in.
2006-3-20 14:57:01.390 登录成功
2006-3-20 14:57:01.390 PWD
2006-3-20 14:57:01.421 257 "/" is current directory.
2006-3-20 14:57:01.421 CWD /
2006-3-20 14:57:01.453 250 CWD command successful.
2006-3-20 14:57:01.468 PWD
2006-3-20 14:57:01.500 257 "/" is current directory.
2006-3-20 14:57:01.500 PASV
2006-3-20 14:57:01.531 227 Entering Passive Mode (210,192,122,119,136,162).
2006-3-20 14:57:01.546 正在连接 210.192.122.119:34978
连接超里
我应该怎么设置iptables才能使ftp正常工作