On Tue, 12 Mar 2002 02:41:08 +0100 "Joffer" <[EMAIL PROTECTED]> wrote:
> but active ftp also requires you to open port 20/tcp inbound to > highports/tcp, since the ftpserver will initiate a connection from port 20 > to port N+1 (where N is the highport your computer chose when initiate a > connection to the ftp server on port 21 (cmd). If I must have a rule for port 20, instead of relying and RELATED then why does executing my script twice make active ftp work? > > A great readthrough would be "Active FTP vs. Passive FTP, a Definitive > Explanation": http://www.slacksite.com/other/ftp.html > > > /christopher thorjussen > > ----- Original Message ----- > From: "Tony Hebert" <[EMAIL PROTECTED]> > To: "Bob Surenko" <[EMAIL PROTECTED]> > Cc: "Ron Darling" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> > Sent: Monday, March 11, 2002 11:15 PM > Subject: Re: FTP Software error with IPTables > > > > make sure you are loading the ip_nat_ftp and the ip_conntrack_ftp modules. > > otherwise active ftp will never work > > > > > > > > "What are the best things in life?" > > > > "To Crush your Enemies, > > See them Driven before You, > > And Hear the Lamentations of the Women." > > > > - Conan the Barbarian > > > > > > > > > > > > > > >
