1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

DMZ and FTP Server Issues

Discussion in 'Tomato Firmware' started by OLOCO, Dec 26, 2011.

  1. OLOCO

    OLOCO Networkin' Nut Member

    Hi!
    I wish you could help me.
    I have an asus rt16n with Tomato Firmware v1.28.9054 MIPSR2-beta K26 USB Ext
    All the settings are from default.
    Well, I have got a server throuth DMZ (192.168.1.10).
    I want to connect to the external hard drive via integrated ftp server, but there is a problem. When DMZ is NOT activated, I can connect correctly via Internet and Lan, but if I activate the DMZ option, I just can connect via Lan to the ftp server, but not from Internet.
    I think Its something related to Iptables, but im not sure. I wish you could help me to find the solution to this problem.
    This is the result of iptables -L -n with DMZ activated:

    And this is the iptables withouth DMZ activated:

    When I try to connect via filezilla to the integrated ftp server when DMZ is activated, I get this error:
    The strange thing is that I can connect to the web server from Internet, the same as sshd.
    I understand that iptables will accept all the incoming connections (INPUT CHAIN) because of
    Also, I have tried to add:
    and
    but the same result...
    Deleting the line in CHAIN FORWARD containing
    (this is the one that the router add to iptables when DMZ is activated), gives the same result.

    I have no more ideas....
     
  2. OLOCO

    OLOCO Networkin' Nut Member

    Well, after doing a lot of tests, I think that I finally got a solution. I just had to port forward 20 and 21 to 192.168.1.1 (router ip).
    But, anyway, I don't understand one thing. I don't have to do port forwarding so as to use sshd and http access to the router from Internet. So, why do I have to do it so as to use ftp integrated server?

    Now, my iptables -n -L looks like this:

    Could anybody try to explain me that question?
    Thank in advance!!
     

Share This Page