Gerd Foerster
Thu, 11 Feb 1999 07:49:50 -0500
Again, someone having problems with FTP: I'm a bit confused about what port mode and passive mode is. So here a description of my problems: Simple IP masquerading (e.g. HTTP) works fine. ip_masq_ftp module is loaded. FTP works fine if data is tranferred on a connection initiated by the remote site (from port 20). If the data connection is initiated by the masqueraded client the connection fails. /var/log/messages lists messages like this: IP fw-fwd deny eth1 TCP <ftp-client>:1282 198.105.232.1:4284 L=44 S=0x00 I=33050 F=0x0040 T=127 'ipfwadm -lMnex' shows: (slightly modified to fit into lines) prot expire source destination ports tcp 05:34.90 <ftp-client> 198.105.232.1 0 (61470) -> 4284 tcp 14:35.01 <ftp-client> 198.105.232.1 1281 (61469) -> 21 The underlying problems appears to be the faulty port mapping '0 (61470) -> 4284' inserted by ip_masq_ftp. Any hints? Thanks in advance Gerd --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] For daily digest info, email [EMAIL PROTECTED]