You mentioned your doing *both* ipchains & iptables... ipchains does not remember state (stateful packet inpection or whatevers that called) so that may be your problem (maybe ip_nat_ftp is for iptables only, dunno).
maybe try just using iptables only (it can do all that ipchains does anyway). you may also want to load ip_conntrack_ftp. depending on your firewall rules you may also have to allow incoming --state ESTABLISHED,RELATED packets. another thing to try is if you can connect ftp by switching between PASSIVE or ACTIVE mode...that could give more clues. jondz > > Hi. My internal network still cannot access outside FTPs > > I did a insmod ip_nat_ftp but still not working. > > Thanks > Marc > > - lsmod - > > Module Size Used by Not tainted > ip_nat_ftp 4320 0 (unused) > nls_iso8859-1 3488 1 (autoclean) > via82cxxx_audio 20448 0 (autoclean) > uart401 7936 0 (autoclean) [via82cxxx_audio] > ac97_codec 11904 0 (autoclean) [via82cxxx_audio] > sound 72012 0 (autoclean) [via82cxxx_audio uart401] > soundcore 6692 4 (autoclean) [via82cxxx_audio sound] > binfmt_misc 7556 1 > nfsd 76160 8 (autoclean) > lockd 56736 1 (autoclean) [nfsd] > sunrpc 75764 1 (autoclean) [nfsd lockd] > autofs 12164 0 (autoclean) (unused) > ppp_synctty 6656 0 (unused) > ppp_async 8256 1 > ppp_generic 24108 3 [ppp_synctty ppp_async] > slhc 6508 0 [ppp_generic] > dmfe 15420 2 > ipt_state 1536 1 (autoclean) > iptable_mangle 3136 0 (autoclean) (unused) > ipt_MASQUERADE 2464 1 (autoclean) > iptable_nat 21012 2 (autoclean) [ip_nat_ftp ipt_MASQUERADE] > ip_conntrack 21164 2 (autoclean) [ip_nat_ftp ipt_state > ipt_MASQUERADE iptable_nat] > iptable_filter 2752 1 (autoclean) > ip_tables 13984 7 [ipt_state iptable_mangle ipt_MASQUERADE > iptable_nat iptable_filter] > ide-cd 30272 1 (autoclean) > cdrom 32192 0 (autoclean) [ide-cd] > usb-uhci 24484 0 (unused) > usbcore 73152 1 [usb-uhci] > > > ----- Original Message ----- > From: "Loreto Casala Jr." <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Wednesday, March 19, 2003 10:14 AM > Subject: Re: [plug] FTP Access problem > > > > marc > > > > echo -en "ip_nat_ftp, " > > $INSMOD ip_nat_ftp > > > > On Wed, 19 Mar 2003 10:13:49 +0800, Marc Chan > > <[EMAIL PROTECTED]> wrote: > > > > > Hi pluggers, > > > > > > I tried using both ipchains and iptables to masquerade. > > > > > > My internal network can surf, download, icq, chat but cannot access > > > outside ftps. > > > It says Illegal port or something. > > > > > > Did I miss something here? Do I still need to modprobe ftp? > > > I'm very confuse. please help. > > > > > > > > > Thanks, > > > Marc > > > > > > _ > > Philippine Linux Users Group. Web site and archives at > http://plug.linux.org.ph > > To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] > > > > Fully Searchable Archives With Friendly Web Interface at > http://marc.free.net.ph > > > > To subscribe to the Linux Newbies' List: send "subscribe" in the body to > [EMAIL PROTECTED] > > > _ > Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph > To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] > > Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph > > To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL > PROTECTED] > _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
