Hi all I have stupid problem with ftp redirection When rule is without remapping port from 21 to 1212 ( or other) everything works fine But when i use DNAT net loc:192.168.52.10:21 tcp 1212 - i touch ftp but get error about passive mode... I try to redirect ftp passive ports, but no success ... I change my distro from Mandriva 2010.2 to Magea 3 ( new mandriva free distro) . Version of my shorewall is 4.5.10.1 thanks for all ------------------------------------------------------------------------------ Shape the Mobile Experience: Free Subscription Software experts and developers: Be at the forefront of tech innovation. Intel(R) Software Adrenaline delivers strategic insight and game-changing conversations that shape the rapidly evolving mobile landscape. Sign up now. http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
On 11/20/2013 7:35 AM, valio wrote:> Hi all > I have stupid problem with ftp redirection > When rule is without remapping port from 21 to 1212 ( or other) > everything works fine > But when i use > DNAT net loc:192.168.52.10:21 tcp 1212 - > i touch ftp but get error about passive mode... > I try to redirect ftp passive ports, but no success ... > I change my distro from Mandriva 2010.2 to Magea 3 ( new mandriva free > distro) . > Version of my shorewall is 4.5.10.1 > thanks for allThis point is discussed at http://www.shorewall.org/FTP.html#Ports -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Shape the Mobile Experience: Free Subscription Software experts and developers: Be at the forefront of tech innovation. Intel(R) Software Adrenaline delivers strategic insight and game-changing conversations that shape the rapidly evolving mobile landscape. Sign up now. http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
Thanks Tom,
I checked this before write but .. i miss something..
I will try back tomorrow :)
P.S.
FTP(DNAT) net loc:192.168.1.5 tcp 1212 -
It is correct for remapping 1212 port on my FW to 21 port on Ip behind my FW ?
On 11/20/2013 6:25 PM, Tom Eastep wrote:
On 11/20/2013 7:35 AM, valio wrote:
Hi all
I have stupid problem with ftp redirection
When rule is without remapping port from 21 to 1212 ( or other)
everything works fine
But when i use
DNAT net loc:192.168.52.10:21 tcp 1212 -
i touch ftp but get error about passive mode...
I try to redirect ftp passive ports, but no success ...
I change my distro from Mandriva 2010.2 to Magea 3 ( new mandriva free
distro) .
Version of my shorewall is 4.5.10.1
thanks for all
This point is discussed at http://www.shorewall.org/FTP.html#Ports
-Tom
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
I checked all docs and load right modules, but still not working ftp
redirection on my GW :(
"modprobe nf_conntrack_ftp ports=21,1212
modprobe nf_nat_ftp
DNAT net loc:192.168.0.100:21 tcp 1212 -
DNAT net loc:192.168.0.100:20 tcp 20 -
DNAT net loc:192.168.0.100:60000-62000 tcp
60000:62000 -
"
What i miss ?
On 11/20/2013 7:46 PM, valio wrote:
Thanks Tom,
I checked this before write but .. i miss something..
I will try back tomorrow :)
P.S.
FTP(DNAT) net loc:192.168.1.5 tcp 1212 -
It is correct for remapping 1212 port on my FW to 21 port on Ip behind my FW ?
On 11/20/2013 6:25 PM, Tom Eastep wrote:
On 11/20/2013 7:35 AM, valio wrote:
Hi all
I have stupid problem with ftp redirection
When rule is without remapping port from 21 to 1212 ( or other)
everything works fine
But when i use
DNAT net loc:192.168.52.10:21 tcp 1212 -
i touch ftp but get error about passive mode...
I try to redirect ftp passive ports, but no success ...
I change my distro from Mandriva 2010.2 to Magea 3 ( new mandriva free
distro) .
Version of my shorewall is 4.5.10.1
thanks for all
This point is discussed at http://www.shorewall.org/FTP.html#Ports
-Tom
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
------------------------------------------------------------------------------
Shape the Mobile Experience: Free Subscription
Software experts and developers: Be at the forefront of tech innovation.
Intel(R) Software Adrenaline delivers strategic insight and game-changing
conversations that shape the rapidly evolving mobile landscape. Sign up now.
http://pubads.g.doubleclick.net/gampad/clk?id=63431311&iu=/4140/ostg.clktrk