Re: can't ftp through IP Masq

[Sven Burgener <svenb@bluewin.ch>]

Hi John

On Tue, Aug 15, 2000 at 02:48:12PM -0500, John Reinke wrote:
> I only had one ipchains rule to turn it on, and added another to prevent
> timeout on secondary ftp connections, but I don't really understand it all
> yet. I might try the script below, though. What do you name it, and where
> do you put it so it gets read?

As the tags show, its a snippet of a larger script with more rules for
allowing other services thru the box. I have set things up this way:

# ls -l /etc/init.d/fire.sh
-rwxr-xr-x    1 root     root         1321 Aug 10 19:51 /etc/init.d/fire.sh

/etc/init.d/fire.sh calls the following scripts according to $1 it is
passed. ("start" or "stop"...)

# ls -l /etc/ppp/firewall*.sh
-rwxr-xr--    1 root     root          278 Aug  9 21:50 /etc/ppp/firewall_off.sh
-rwxr-xr--    1 root     root         5224 Aug 15 21:25 /etc/ppp/firewall_on.sh

The snippet I posted was from firewall_on.sh.

I ran update-rc.d for creating appropriate SysV links.

# zless /etc/init.d/README /usr/doc/sysvinit/README.runlevels.gz
for more infos.

> (Nice footer, BTW.)

:)

Sven
-- 
I can't be wrong, my modem's got error-correction.