Hacker News new | ask | show | jobs
by tverbeure 899 days ago
I tried. The logic analyzer doesn’t support PASV. I could only make it work by opening up all ports for the logic analyzer IP address. At least that was the case for Ubuntu 20.04, it worked out of the box for Ubuntu 18.04. I need to dig into that one day…
1 comments
abbeyj 899 days ago
Since you're stuck using active FTP, maybe using nf_conntrack_ftp would help? I believe it is supposed to snoop the FTP connection, extract the port number from the PORT command, and then open only that port (from only that one IP) on the firewall. Of course since this is all on your LAN, just opening up all connections from the IP address is not really that dangerous and so anything more advanced might not be worth the effort.
link