Re: Linux firewall vs. other products
On Mon, Jul 17, 2000 at 01:11:15PM +0200, Ralf G. R. Bergs wrote:
> On Mon, 17 Jul 2000 11:32:41 +0200 (CEST), Rickard Lind wrote:
> >The typical example of why you would need a proxy is
> >FTP: the client opens a "control" connection
> >(typically on port 21) and sends an address and port
> >to the server on which the server opens a "data"
> >connection to send the file(s). A "mere" packet filter
> >cannot handle this which I believe is why the Linux
> >kernel has a FTP module to handle this. I'm not sure
Yes, the story of active and passive FTP.
> This is correct. It works pretty well, I used to use the FTP IP masquerading
> module for quite some time, and had only smallish problems.
The module; is it for allowing active or passive FTP transfers?
> This sounds like a great idea. I'm using a Debian box as a router and
> firewall, and it would probably helped me much if such an option had existed.
Yes, me too. :)
Would anyone *like* to show me the necessary rules for both active and
passive FTP transfers with ipchains?
Windows does *not* have bugs. It just develops random features.