search for: iptables_modules

Greetings, Beginning today, I started to receive the following when ftp'ing to my CentOS 6 machine: ncftp /home/pyz2 > dir connect failed: No route to host. connect failed: No route to host. connect failed: No route to host. Falling back to PORT instead of PASV mode. I can make a connection, but I can't get a directory listing or transfer data/files. I'm flummoxed. What I had

...>> Is this correct? > > only if you're running some Linux build from the 1990s. > > nothing on RHEL/CentOS should need anything in rc.local Then what is the appropriate way to ensure that these modules are loaded? Should they be placed in the /etc/init.d/iptables script? IPTABLES_MODULES="iptable_nat ip_nat_ftp ip_conntrack ip_conntrack_ftp" or somewhere else? Thanks Max

Hi, I'm wondering about the impact of using both dom0 and domU's on a server at the same time. I'm worried about the performance impact of running a Mysql server in a domU and now I'm thinking about moving the Mysql part of a LAMP setup into dom0 and running a few Apache guests as domUs. Since the Apaches will serve mostly from an NFS share they won't have much impact on

...gt; only if you're running some Linux build from the 1990s. >> >> nothing on RHEL/CentOS should need anything in rc.local > > > Then what is the appropriate way to ensure that these modules are loaded? > > Should they be placed in the /etc/init.d/iptables script? > IPTABLES_MODULES="iptable_nat ip_nat_ftp ip_conntrack ip_conntrack_ftp" > > or somewhere else? > > Thanks > > Max It should do it automatically for you. Try it. Editing system init scripts is rarely recommended. Tris ************************************************************* T...

Hello CentOS, Is there a specific RPM that makes "insmod ip_conntrack_ftp" available? I've been using that on a number of servers fine, but the latest one I've built, running insmod ip_conntrack_ftp gives me: insmod: can't read 'ip_conntrack_ftp': No such file or directory -- Best regards, Mickael mailto:mike at kamloopsbc.com www.MickaelMaddison.com

I do not use ftp much lately, but my bro did and noticed we cannot ftp to the server since the upgrade. Using VSFTP. Tried rebooting but nothing. Looks like it goes through the whole process and then 'bam'. Could not find an error log that listed the error anywhere. Worked great before 5.4 update, now it does not work at all. Here is the info from cuteftp. STATUS:> Getting

...er ftp software) was installed as part of the webserver. some quick notes, hope it helps anyone else having an issue. So I yum installed it. I had a bear of a time. But I finally got it to work doing the following. I had to add ip_conntrack_ftp to my iptables-config file or it would not work IPTABLES_MODULES="ip_conntrack_ftp" I had to add this line to my iptables file -A INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT NOTE: I tried using other non standard ports, but this caused a problem upon connection with no way to fix it. I believe it has something to do with port 20 pa...

I installed 2.6.20.7 copied /boot/config{something} to .config make oldconfig make oldconfig make menuconfig - turned on drivers -> Sata -> nvidia make bzImage make modules make modules_install make install rebooted. Seems like the issue I had with forcedeth (nvidia) bad MAC address is gone. However, the iptables gives errors. Where in the menu tree do I enable what iptables needs??? I

Centos 6, stock installation, no additional repos added. vsftp works fine in regular mode, going to ssl I got issues. I get as far as 'directory listing' and it dies. It times out and disconnects. file: /etc/sysconfig/iptables-config added: IPTABLES_MODULES="ip_conntrack_ftp" (without this line, ftp normally fails, afraid it may be causing issues with the ssl) iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT again, normal ftp fine. vsftp file below are the additional commands I entered to get ssl/tls up and runnin...

Hi, I have a setup where the tftp server is inside the firewall. Now the issue is tftp client send request on dynamic udp port. Can anyone give some idea, how i can bind the fixed port for client udp requests ? Otherwise i hope, it is not a solution that i will open all port related to UDP in the firewall. Regards, lingu -------------- next part -------------- An HTML attachment was scrubbed...

...ng options pasv_min_port=40000 pasv_max_port=60000 pasv_address=xxx.xxx.xxx.xxx connect_from_port_20=NO The ftp entry automatically generated the system in /etc/sysconfig/iptables is -A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT and to IPTABLES_MODULES entry in /etc/sysconfig/iptabes-config I've added ip_conntrack_ftp Enclosed are my iptables and vsftp.conf files (which might not make it to the list.) Regarding item (2), I would guess I would have to add the following entries: Active: --------- -A RH-Firewall-1-INPUT -m state --s...

Hello everyone. When I try to view the windows network which I connected, the error "unable to mount share list from server" pops up. Once I tuned my firewall off, everything works fine. Does anyone know how to configure iptables in order to don't disable them. My current configuration of iptables is following: # Generated by iptables-save v1.4.7 on Sat Nov 16 11:06:35 2013 *filter

Hi Guys, i wanted to share this with u and ask for little help at the same time: i used iptables to secure my server, so i wnet ahead and blocked avery thing except a couple of domain protocols and UDP ports of SIP, IAX2 and that range 15000 to 20000, tested it and OK. when in production, the calls were taking a huge time 7s to be established and somtimes after call setup people cannot hear ech

On Sun, 28 Jun 2015, Brian Miller wrote: > On Sun, 2015-06-28 at 14:50 -0400, Max Pyziur wrote: > >> I haven't setup the firewall yet (dangerous, I know) until I get the >> connectivity working. >> >> I'm obviously overlooking some other configuration settings required for >> machines inside the network being able to connect through the >>

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=91 mschwendt@users.sf.net changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | ------- Additional Comments From mschwendt@users.sf.net

...192.168.1.231 tcp 21 DNAT net lan:192.168.1.231 udp 20 DNAT net lan:192.168.1.231:22 tcp 2222 #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE 5. # cat /proc/sys/net/ipv4/ip_forward 1 6. more /etc/sysconfig/iptables-config IPTABLES_MODULES="ip_conntrack_netbios_ns ip_nat_ftp ip_conntrack_ftp" Chain net_dnat (1 references) pkts bytes target prot opt in out source destination 3 156 DNAT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 to:192.168.1.231 0...

....10/32 -o eth0 -j MASQUERADE -A POSTROUTING -s 172.16.0.9/32 -o eth0 -j MASQUERADE -A POSTROUTING -s 172.16.0.138/32 -o eth0 -j MASQUERADE COMMIT -------------------------------------------------------------- my /etc/sysconfig/iptables- # Additional iptables modules (nat helper) # Default: -empty- IPTABLES_MODULES="ip_nat_ftp" # Save current firewall rules on stop. # Value: yes|no, default: no #IPTABLES_SAVE_ON_STOP="no" # Save current firewall rules on restart. # Value: yes|no, default: no #IPTABLES_SAVE_ON_RESTART="no" # Save (and restore) rule counter. # Value: yes|no,...

Hi, I'm currently setting up a local FTP server, to receive disk images sent with G4L (Ghost4Linux). This server has been running Slackware Linux before, and the Vsftpd setup was relatively simple. With CentOS things seem to be slightly different, so I'm currently trying to work things out. For the moment, two things seem to be creating problems, the simple iptables firewall and

I'm having a heck of a time getting vsftpd to work properly. When Iptables are OFF, it works fine, and when iptables is on, it dies. When I try ftp from a command line, here's what the session looks looks like: [root at mylaptop ~]# ftp ftp.server.com Connected to ftp.server.com. 220 Welcome to My Company FTP 530 Please login with USER and PASS. 530 Please login with USER and PASS.