Re: how to control the ftp-data traffic

To: debian-firewall@lists.debian.org
Subject: Re: how to control the ftp-data traffic
From: Rafa Garrido <rgarrido.l@gmail.com>
Date: Sat, 17 Sep 2005 21:19:23 +0200
Message-id: <[🔎] 2b8e199705091712191947714f@mail.gmail.com>
Reply-to: rgarrido.l@gmail.com
In-reply-to: <[🔎] 200509171619.36665.leva@az.isten.hu>
References: <[🔎] 200509171619.36665.leva@az.isten.hu>

If you have ip_conntrack_ftp, you can use this:
"iptables -t mangle -A FORWARD -m helper --helper ftp -j MARK --set-mark "
With this, all packets RELATED to a ftp-session will be marked, this
includes to passive ftp-session.
Greetings.

On 9/17/05, LeVA <leva@az.isten.hu> wrote:
> Hi!
> 
> Does anyone have an idea how to limit the ftp server's bandwidth? I can mark
> the packets from/to the port 21, but the data connection (passive) uses
> another and random port. How would I know which port will be the data
> connection port?
> 
> Thanks!
> 
> Daniel
> 
> --
> LeVA
> 
> 
> --
> To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
> 
>

Reply to:

References:
- how to control the ftp-data traffic
  - From: LeVA <leva@az.isten.hu>

Prev by Date: how to control the ftp-data traffic
Next by Date: Firewall on router question
Previous by thread: how to control the ftp-data traffic
Next by thread: Firewall on router question
Index(es):
- Date
- Thread