[NTLUG:Discuss] ftp problems through firewall
Paul Ingendorf
pauldy at wantek.net
Thu Feb 28 22:12:14 CST 2002
1 of 2 things here.
make sure you are loading the following
ip_conntrack_ftp
ip_nat_ftp
your mileage may vary with these two kludges but when they are both loaded they seem to work ok.
Also make sure you aren't denying your masq ports to everyone as these are the ports are what outbound communications should happen over I forget what ports this is ( you can config in /proc ) but it should be over 60000 if you have to, allow that and above implicitly although I'm pretty sure it is just a port forwarding issue. If those don't work try sending the output of iptables-save instead of the script you use to create your rules.
-----Original Message-----
From: discuss-admin at ntlug.org [mailto:discuss-admin at ntlug.org]On Behalf
Of Raymond Norton
Sent: Thursday, February 28, 2002 8:59 PM
To: discuss at ntlug.org
Subject: [NTLUG:Discuss] ftp problems through firewall
I have an iptable script running on my RedHat 7.1 box. It works great
running my laptop through it for everything except when I try to access ftp
servers on the outside. I am able to connect, but I cannot issue any
commands with out getting an error: "Cannot connect to (outside
interface):1294"
Any ideas how to resolve this? I have attached the script as I run it.
--
Raymond Norton
Little Crow Telemedia Network
320-234-0270
More information about the Discuss
mailing list