[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Linux firewall vs. other products

On Mon, Jul 17, 2000 at 01:11:15PM +0200, Ralf G. R. Bergs wrote:

> On Mon, 17 Jul 2000 11:32:41 +0200 (CEST), Rickard Lind wrote:
> >The typical example of why you would need a proxy is
> >FTP: the client opens a "control" connection
> >(typically on port 21) and sends an address and port
> >to the server on which the server opens a "data"
> >connection to send the file(s). A "mere" packet filter
> >cannot handle this which I believe is why the Linux
> >kernel has a FTP module to handle this. I'm not sure

Yes, the story of active and passive FTP.

> This is correct. It works pretty well, I used to use the FTP IP masquerading 
> module for quite some time, and had only smallish problems.

The module; is it for allowing active or passive FTP transfers?

> This sounds like a great idea. I'm using a Debian box as a router and 
> firewall, and it would probably helped me much if such an option had existed.

Yes, me too. :)

Would anyone *like* to show me the necessary rules for both active and
passive FTP transfers with ipchains?

Thanks
Sven
-- 
Windows does *not* have bugs. It just develops random features.
Reply to: