[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [NETVAERK] Firewall og 2 ftp servere, ip_masq_ftp på port 21 & 2121



Magnus Østergaard wrote:
Hej,

Har en kerne 2.2.19 firewall som jeg gerne vil have til at NAT'te ftp til både port 21 og 2121.

Den normale ftp virker fint (20:21) men den anden på (2120:2121) virker ikke.

Problemet er at forbindelsen timer ud, efter jeg er logget ind.

Her er masq reglerne:

ipmasqadm portfw -a -P tcp -L  $EXTNET 20 -R  $FTP1 20
ipmasqadm portfw -a -P tcp -L  $EXTNET 21 -R  $FTP1 21
ipmasqadm portfw -a -P tcp -L  $EXTNET 2120 -R  $FTP2 2120
ipmasqadm portfw -a -P tcp -L  $EXTNET 2121 -R  $FTP2 2121


Jeg har tested med:


modprobe ip_masq_ftp in_ports=21,2121
og
modprobe ip_masq_ftp ports=21,2121

Men der hjælper ikke.

Er der en som har en opskrift på NAT og ftp til Linux kerne 2.2.19?

Nope. Jeg husker en del Ting&Sager var temmelig besværlige med iptables, især NAT.


Omskriv dine regler til iptables, skift til en 2.6.x kerne, og load ftp helper modulet med insmod ip_conntrack_ftp ports=21,2121 .
Du skal sikkert have regler for begge porte, men her kan du bruge iptables' target -m multiport --dport (eller --sport) 21 2121


Resten kan jeg ikke hjælpe videre med; har ikke prøvet selv..

--
Kind regards,
Mogens Valentin



 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2005-08-10, 22:43 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *