Scott Moseman wrote:
> I'm configuring a vsftpd server that's also running iptables. Without
> the necessary udp ports open, data connections are blocked so ftp
> clients fail. I configure vsftpd to use a specific range of udp ports
> for the pasv transfers. I configure iptables to allow that range of
> udp ports. Let me show a quick example of what I'm talking about.
>
> # cat /etc/vsftpd/vsftpd.conf | grep pasv
> pasv_min_port=2000
> pasv_max_port=2100
>
> # cat /etc/sysconfig/iptables| grep 20000
> -A RH-Firewall-1-INPUT -p udp -m udp --dport 2000:2100 -j ACCEPT

[snip]

Well, maybe because a FTP-server use the TCP protocol :-)