Menu
▾
▴
[Devil-Linux-discuss] FTP filter - ip_conntrack_ftp
|
From: Renato D. - RM Campinas/G. <ren...@gu...> - 2002-09-10 17:29:10
|
Hi there, I'm trying to use a FTP server that's is behind a DL firewall [last version of it]. As I did with the 80 and 25 port's, i leave the 20 and 21 port's open [see above]. iptables -A PREROUTING -t nat -d 200.1.2.3/32 -j DNAT --to 192.168.1.1 iptables -A POSTROUTING -t nat -s 192.168.1.1/32 -j SNAT --to 200.1.2.3 ... iptables -A FORWARD -p tcp --dport 20 -s 0/0 -i eth0 -o eth1 -j ACCEPT iptables -A FORWARD -p tcp --dport 21 -s 0/0 -i eth0 -o eth1 -j ACCEPT In this particullar case FTP doesn't work. In a Iptables tutorial i found some directions saying that i have to use the "ip_conntrack_ftp" and "ip_nat_ftp" modules. Is there some built-in solution to this case in DL ? Did i have to load this modules ? How i can do that ? [i'm not a linus expert] Thanks for the assistance. |