/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
/* ALSO: Don't quote this header. It makes you look lame :-) */
The point is that the source port is mostly irrelevant. It is the
destination port that counts.
Look in /etc/inetd.conf and /etc/services. These files describe the
"well-known" ports on the machine.
Connections on these ports are assumed to be of the kind required.
Thus the originating (source) machine can use any port it chooses to use as
long as it connects to the telnet port (21 or 23 - don't remember) on the
destination machine.
Now there is a real point to your question because in an ftp connection the
source machine may ask the destination machine to create a tcp connection on
a specific port. Now that is a nasty thing because the masq machine then
becomes a very active participant. The problem is solved using protocol
modules which in fact are small package rewriters handling the reverse
connection so that no one discovers what really goes on. Those are the
masq_ftp.o, masq_cuseeme.o etc you can see somewhere in the rc.modules file.
Sincerely,
Karsten Jeppesen
----------
>From: Paul <[EMAIL PROTECTED]>
>To: [EMAIL PROTECTED]
>Subject: [Masq] A small question about IP-Masquerade.
>Date: Tue, Aug 8, 2000, 06:59
>
> /* HINT: Search archives @ http://www.indyramp.com/masq/ before posting!
> /* ALSO: Don't quote this header. It makes you look lame :-) */
>
>
> Dear all,
>
> In IP-Masquerade, the masquerade machine will modify the IP packets which
> includes the port number. If the masqueraded machine want to telnet to a
> server outside, how the outside machine know this is a ftp request because
> the port no in the packets is no longer 21?
>
> Can anyone give me an explanation? thanks.
>
> Paul
>
> ------------------------------------------------------------
> Get your FREE web-based e-mail and newsgroup access at:
> http://MailAndNews.com
>
> Create a new mailbox, or access your existing IMAP4 or
> POP3 mailbox from anywhere with just a web browser.
> ------------------------------------------------------------
>
> _______________________________________________
> Masq maillist - [EMAIL PROTECTED]
> Admin requests can be handled at http://www.indyramp.com/masq-list/ --
> THIS INCLUDES UNSUBSCRIBING!
> or email to [EMAIL PROTECTED]
>
> PLEASE read the HOWTO and search the archives before posting.
> You can start your search at http://www.indyramp.com/masq/
> Please keep general linux/unix/pc/internet questions off the list.
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ --
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]
PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.
