I am sorry if I've missed info about this, but I, too, am having problems
with masq and ftp, somewhat surprising to me.
I've installed 2 masqued subnets accessing internet through a linux RH5.0
kernel 2.0.33. The masquing has seemed to work for a long time, letting
the pc's inside access anything. No strict filtering is installed at this
point. But suddenly ftp doesn't work properly. Runs ok FROM the box,but
not through.
The following rules are installed:
(NET10 and NET100 are the 2 subnets. NET10 use the linux as default
gateway. NET100 go through another router to get to NET10, on which the
linux is situated)
-F -f
-F -p deny
-F -a accept -S $NET10 -D $NET100
-F -a m -S $NET10 -D any/0
-F -a m -S $NET100 -D any/0
I can connect to the ftp site ok. However I cannot do a ls-command. The
log of the ftp site (which I have not available right now, sorry) said
that it got a connection from the 193.90-address that the linux have; it
got masqued correctly. Next it says it cannot open connection to a port on
the 192.168-address that the PC is having. This is logical, since there is
no routing there, but the whole point of masquerading should be not to let
this address through out. So why does only the first portion of the ftp
connection get masqueraded? I haven't seen this type of problem before.
I am not aware of the masq_ftp_module (I must have missed it), does it do
anything helpful in my case?
Thanks,
Morten Steinvik
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
