[NTLUG:Discuss] iptable help
Michael Patrick
michael at techiesplace.com
Mon Feb 25 17:44:15 CST 2002
On Mon, Feb 25, 2002 at 04:42:14PM -0600, Raymond Norton wrote:
>
>
> I am fairly new to Linux, and Iptables. I am running a 192 network behind
> my Linux box. Using windows on my laptop I am able to run media player,
> Timbuktu, and just about any app I want. I am however having problems
> with FTP. This is the error I get when trying to access any public FTP
> site.
>
> An error occurred opening that folder on the FTP server. Make sure you
> have permission to access that folder.
>
> Details:
> 200 type ok
> 200 port command successful
> 550 Cannot connect to (public IP):2599-timed out
>
>
> #
> # Support for connection tracking of FTP and IRC.
> #
> #/sbin/modprobe ip_conntrack_ftp
> #/sbin/modprobe ip_conntrack_irc
>
>
I *think* this is your problem. If I remember correctly, ip_conntrack_ftp is the module that keeps track of your FTP operations and allows active ftp to work (active being the one where you connect to port 21 on them, and they try to connect back to you on some high port).
You might try enabling this.
Also, you could try running your FTP sessions in passive mode, which means your ftp client makes both the control and the data connections.
Michael
More information about the Discuss
mailing list