Re: FTP, iptables, and connection tracking (2)

To: Debian Firewall - LIST <debian-firewall@lists.debian.org>
Subject: Re: FTP, iptables, and connection tracking (2)
From: deb list <deb@newproject.pl>
Date: Sun, 13 Jun 2004 18:09:24 +0200
Message-id: <[🔎] 1087142963.4394.22.camel@localhost>
In-reply-to: <[🔎] 40C76539.20903@free.fr>
References: <[🔎] 20040609181942.18048.qmail@web11904.mail.yahoo.com> <[🔎] 40C76539.20903@free.fr>

Remember the ftp conntrack and nat kernel modules don't autoload..

Do modprobe ip_nat_ftp to load both.
Set this in your /etc/init.d/iptables script (or wherever you start your
iptables script from)

Regards,
Peter.

On Wed, 2004-06-09 at 21:30, hubix wrote:
> Hello,
> In first, thnks for your help...
> my firewall is configure to accept established connections, default 
> policies is drop, and log before drop...
> and curiously, there are no packets dropped when ftp connection tries...
> I have already tried to insert, for 1s, ACCEPT rule in forward table, 
> and there is no change.
> I will try xinetd configuration
> Sorry.
>

Reply to:

References:
- Re: FTP, iptables, and connection tracking
  - From: Mike Mestnik <cheako911@yahoo.com>
- FTP, iptables, and connection tracking (2)
  - From: hubix <hubix@free.fr>

Prev by Date: Unsuccessful Unsubscribe
Next by Date: Re: dns firewalls and mx records for internally hosted domains
Previous by thread: FTP, iptables, and connection tracking (2)
Next by thread: co jest?...
Index(es):
- Date
- Thread