/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! /* ALSO: Don't quote this header. It makes you look lame :-) */
Willliam Klein wrote: > Hi all; > > I'm trying to setup an ftp server inside my firewall. I know I need to DNAT > port 21. so my rules are: > > > $IPTABLES -t nat -A PREROUTING -i $EXTERNAL -p tcp \ > -d $EXT_IP --dport 21 \ > -j DNAT --to $REMOTEBACKUP:21 > > $IPTABLES -A FORWARD -p tcp -s any/0 \ > -d $EXT_IP --dport 21 \ > -m state --state NEW,ESTABLISHED,RELATED -j ACCEPT > > Now how do I get the random unprivliged port that the client and ftp server > agree upon to DNAT? > > Thanks > > willie load the ip_conntrack_ftp and ip_nat_ftp kernel modules. raf _______________________________________________ Masq maillist - [EMAIL PROTECTED] Admin requests can be handled at http://www.indyramp.com/masq-list/ -- THIS INCLUDES UNSUBSCRIBING! or email to [EMAIL PROTECTED] PLEASE read the HOWTO and search the archives before posting. You can start your search at http://www.indyramp.com/masq/ Please keep general linux/unix/pc/internet questions off the list.
