Tom Eastep wrote: > On 8/12/2014 6:30 PM, [email protected] wrote: >> Tom Eastep wrote: >>> On 8/12/2014 12:53 PM, [email protected] wrote: >>>> For some reason my ftp no longer works. (Ubuntu Raring, kernel >>>> 3.14-1-amd64, Sw 4.6.1.2-1) >>>> >>>> I can clearly see that Shorewall is blocking passive ftp attempts, but I >>>> don't know what to do about it. Connexion tracking doesn't seem to be >>>> working. >>>> >>>> I've gone through http://www.shorewall.net/FTP.html but I see nothing >>>> I'm doing wrong. I do have nf_conntrack_ftp and nf_nat_ftp loaded. In >>>> rules: >>>> ACCEPT $FW net tcp ...,ftp,ftps,... - >>> Connection tracking with ftps will never work. >>> >>> Have you read and followed this part? >>> >>> http://www.shorewall.org/FTP.html#idp8733609696 >>> >> As best I can. All I can understand from that webpage is that I need in >> rules, what I have stated. > So you felt that your setting of AUTOHELPERS was irrelevant because your > kernel is earlier that 3.5? > > -Tom >
I don't understand what you're saying. That page says, "By making AUTOHELPERS=Yes the default, users can upgrade their systems to a 3.5+ kernel without disrupting the operation of their firewalls. " My kernel is above 3.5. It's 3.14-1. It seems then that AUTOHELPERS should be Yes.
------------------------------------------------------------------------------
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
