First problem: How should I set the firewall filtering rules for an FTP server? I’m assuming I need three sets of rules:
- Allow traffic to port 21 and any return traffic with connection state of established.
- Allow any incoming traffic with connection type of “ftp” plus any return traffic with connection state of established.
- Allow any traffic with connection state of “related”.
…but I’m utterly unsure if I’m doing the right thing. Am I?
Second problem: If this ftp server is sitting behind the border router using a private address, how should I set up routing?
You have to netmap one port from the public side to one port on the private side… search the forum for examples..