Originally Posted by
absolon
Hi!
My setup:
- Oleg firmware
- Vsftpd from ipkg pacakge.
Problem
I have no access to vsftpd from outside if firewall in WebAdmin is enabled. So the only one way to have access is to disable firewall?
OK, let's say I will disable it. I'd like to use iptables instead. But what rules should I put in post-firewall to be still protected?
Is it enough?
1. All what I want is to be protected as much as possible
2. Have access to ftp from outside.
By the way, I made small test (PC Flank website) with firewall (in Webadmin) enabled/disabled.
With endabled:
- all ports are reported as stealthed
With firewall disabled + iptables rules shown above:
- some ports are reported as closed
- some 80, 21, 23, 139 are open (I don't have www server!, why port 80 is open? hmm...)