Displaying 20 results from an estimated 8000 matches similar to: "[Bug 107] Kernel panic when using NAT + FTP - ftp_conntrack problem"
2003 Jun 30
0
[Bug 107] New: Kernel panic when using NAT + FTP - ftp_conntrack problem
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=107
Summary: Kernel panic when using NAT + FTP - ftp_conntrack
problem
Product: netfilter/iptables
Version: linux-2.4.x
Platform: i386
OS/Version: All
Status: NEW
Severity: major
Priority: P2
Component: NAT
2003 Jun 30
2
[Bug 107] Kernel panic when using NAT + FTP - ftp_conntrack problem
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=107
------- Additional Comments From laforge@netfilter.org 2003-06-30 17:10 -------
This is strange, we've never had a bug report regarding this issue.
btw:I'm running 2.4.20 with prixm2 and hostap driver as a gateway in my home, too.
regarding your router: can you configure it to use a serial console (if it has
no
2002 Jul 23
1
adjusting ip nat ftp ports
Hello ,
Regarding a previous post in this group. (see below)
Does anyone know how I can change the options for ipnat_ftp or
ip_conntrack_ftp when I don''t load them as modules but have them
compiled in the kernel?
I''ve been looking on google since long now, but can''t seem to find it.
Any idea, anyone? I have added these ''options'' and did a network
2009 Feb 03
2
[Bug 574] New: nf_conntrack_ftp.c ignores RFC 1123 regarding parentheses in FTP passive mode message 227
http://bugzilla.netfilter.org/show_bug.cgi?id=574
Summary: nf_conntrack_ftp.c ignores RFC 1123 regarding
parentheses in FTP passive mode message 227
Product: netfilter/iptables
Version: linux-2.6.x
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P3
Component:
2003 Sep 14
0
Shorewall sending PASV FTP
I''v don all the work that was shown on the installation documentaion but It still can''t send PASV comands and ares up the is their somthing i''m missing from the Rules.
###
# Shorewall version 1.3 - Rules File
#
# /etc/shorewall/rules
REJECT:info loc net tcp 6667,137,138,139
REJECT:info loc net udp 137,138,139
#REDIRECT
2002 Nov 06
5
ftp port 24562 pasv doesnt work, no logging
Hi,
I have a cisco sdsl modem to connect to internet via eth1 (192.168.1.2)
local is eth0 (192.168.2.254)
default gw is 192.168.1.1
the cisco forwards all incoming ports to 192.168.1.2.
I connect from outside on port 24562, login is successfull, the
ftpserver gives back the external Ip of the cisco as pasv IP to the
client (its a setting in the ftpserver). It gives an ip from the pasv
range I
2002 Jan 19
6
pasv ftp
Hi,
ok Im all new to this :-)
for pasv ftp in your example you say for example to use ports
65500-65535, but i dont see that u open those ports in your example fw
scripts..?
any hints ?
--
Christophe Zwecker mail: doc@zwecker.de
Hamburg, Germany fon: +49 179 3994867
http://www.zwecker.de
"Who is General Failure ? And why is he reading my disk
2007 Jan 09
5
filtering in layer 2 [but is not a bridge]
I have a linux AP with prism2 (hostap) wireless nic.
I whant to filter traffic that pass betwen clients of the AP, this is layer 2
traffic (802.11) and netfilter does not sees it, at first i think in physdev
target, but is for layer2 bridged interfaces, and this is not the case.
There is a way to filter layer2 traffic independet if it is from a bridged
iface or not?
--
Luciano
2008 Mar 30
7
FTP DNAT not working - "Server sent passive reply with unroutable address"
Hi all!
I am a long time lurker, but have not posted until now.
My old trusted firewall machine broke a couple of weeks ago and I replaced it
with a XEN domU that is using DNAT and has two interfaces. The firewall domU and
the FTP server domU are both guests on the same dom0. All three machines are
running Debian/etch (stable) and Shorewall has version 3.2.6.
I can''t get FTP to work
2003 Feb 06
0
[Bug 44] New: ip_conntrak_ftp / ip_nat_ftp enhancements
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=44
Summary: ip_conntrak_ftp / ip_nat_ftp enhancements
Product: netfilter/iptables
Version: linux-2.4.x
Platform: All
OS/Version: All
Status: NEW
Severity: enhancement
Priority: P2
Component: connection tracking
AssignedTo:
2003 Aug 02
1
[SECURITY] Netfilter Security Advisory: NAT Remote DOS (SACK mangle)
--7ZAtKRhVyVSsbBD2
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
Netfilter Core Team Security Advisory
=20
CVE: CAN-2003-0467
Subject:
Netfilter / NAT Remote DoS
Released:
01 Aug 2003
Effects:
Under limited circumstances, a remote user may be able to crash
2005 Jul 07
2
ftp daemon problem
New install of CentOS 4.1; our first try at the 4.x.
On previous 3.x installs we've used proftpd.
On this one we're using (trying to use is a better statement of what
we're going through) the default daemon, /usr/sbin/vsftpd.
But we don't get anywhere.
<snip>
ftp> passiv
Passive mode off.
ftp> put ~/xorg.conf.work
local: /home/jlasman/xorg.conf.work remote:
2006 Feb 08
0
[Bug 443] New: 2.6 kernel failing in NAT with significant outbound traffic
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=443
Summary: 2.6 kernel failing in NAT with significant outbound
traffic
Product: netfilter/iptables
Version: linux-2.6.x
Platform: i386
OS/Version: All
Status: NEW
Severity: blocker
Priority: P2
Component: NAT
AssignedTo:
2003 Mar 20
6
[Bug 68] Kernel panic
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=68
------- Additional Comments From laforge@netfilter.org 2003-03-20 10:55 -------
This looks strange.
The BUG in slab.c tells us that there is a GFP_ATOMIC missing. This means that
we are allocating kernel memory from softirq context with only GFP_KERNEL.
If I understand your backtrace correctly, what happens is:
- you are
2005 Jun 02
4
Net > DMZ and AllowFTP
I am trying to get the AllowFTP action to work for Net > DMZ traffic and
FTP pasv. I know it is kind of working, as the user can log in, however,
it fails at the port. I have had to open up some high ports for pasv to
work. Now I know this aint cool, so does anyone know what a person has
to do to get the AllowFTP action to work the same way it does if I was
just ftp to the firewall, which does
2007 Apr 18
1
[Bridge] Wireless Bridge problems
I am using the madwifi driver with the patch to allow changing of the
MAC address
and I have two other ethernet interfaces plus a pppoe interface. My
outbound
connection is ppp0. I have ath0, eth1, eth2 for internal interfaces.
I have
added these three interfaces to br0. Once the traffic leaves the linux
router, it gets
NAT'd and goes out through ppp0. All traffic on all segments works
2003 Feb 03
0
[Bug 40] New: system hangs, Availability problems, maybe conntrack bug, possible reason here.
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=40
Summary: system hangs, Availability problems, maybe conntrack
bug, possible reason here.
Product: netfilter/iptables
Version: linux-2.4.x
Platform: i386
OS/Version: RedHat Linux
Status: NEW
Severity: critical
Priority: P2
2003 Aug 07
2
wi0 Doesn't on 11Mbps!!!
I have a prism 2.5 firmaware 1.5.6 but I can't make work this in 11Mbps
on Freebsd 5.1
but the same card work perfect in Freebsd 5.0
help pls!
this is my ifconfig
wi0:flags=8947<UP,BROADCAST,DEBUG,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu
1500
ether 00:60:b3:7a:a3:1d
media: IEEE 802.11 Wireless Ethernet DS/11Mbps <hostap>
(DS/2Mbps <hostap>)
status:
2003 Mar 30
10
[Bug 71] dnat breaks connection tracking?
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=71
------- Additional Comments From laforge@netfilter.org 2003-03-30 21:18 -------
First of all: You didn't even specify the particular kernel version you are
running, not even mentioning which versions of which patches you are using (if
any).
Secondly, I don't see anything strange in this setup. DNAT with FTP sessions
2004 Aug 21
0
Port forwarding from Internal LAN
Hello,
I'm trying to set up port forwarding in IPTABLES and so far it's working great from the internet, but when I attempt from my internal LAN using the External IP address, it fails.
EXTIF="eth0"
INTIF="eth1"
EXTIP="xxx.xxx.xxx.xxx"
INTNET="192.168.1.0/24"
INTIP="192.168.1.1"
PORTFWIP="192.168.1.13"
>From the internet,