similar to: [Bug 107] Kernel panic when using NAT + FTP - ftp_conntrack problem

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=107 Summary: Kernel panic when using NAT + FTP - ftp_conntrack problem Product: netfilter/iptables Version: linux-2.4.x Platform: i386 OS/Version: All Status: NEW Severity: major Priority: P2 Component: NAT

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=107 ------- Additional Comments From laforge@netfilter.org 2003-06-30 17:10 ------- This is strange, we've never had a bug report regarding this issue. btw:I'm running 2.4.20 with prixm2 and hostap driver as a gateway in my home, too. regarding your router: can you configure it to use a serial console (if it has no

Hello , Regarding a previous post in this group. (see below) Does anyone know how I can change the options for ipnat_ftp or ip_conntrack_ftp when I don''t load them as modules but have them compiled in the kernel? I''ve been looking on google since long now, but can''t seem to find it. Any idea, anyone? I have added these ''options'' and did a network

http://bugzilla.netfilter.org/show_bug.cgi?id=574 Summary: nf_conntrack_ftp.c ignores RFC 1123 regarding parentheses in FTP passive mode message 227 Product: netfilter/iptables Version: linux-2.6.x Platform: All OS/Version: All Status: NEW Severity: normal Priority: P3 Component:

I''v don all the work that was shown on the installation documentaion but It still can''t send PASV comands and ares up the is their somthing i''m missing from the Rules. ### # Shorewall version 1.3 - Rules File # # /etc/shorewall/rules REJECT:info loc net tcp 6667,137,138,139 REJECT:info loc net udp 137,138,139 #REDIRECT

Hi, I have a cisco sdsl modem to connect to internet via eth1 (192.168.1.2) local is eth0 (192.168.2.254) default gw is 192.168.1.1 the cisco forwards all incoming ports to 192.168.1.2. I connect from outside on port 24562, login is successfull, the ftpserver gives back the external Ip of the cisco as pasv IP to the client (its a setting in the ftpserver). It gives an ip from the pasv range I

Hi, ok Im all new to this :-) for pasv ftp in your example you say for example to use ports 65500-65535, but i dont see that u open those ports in your example fw scripts..? any hints ? -- Christophe Zwecker mail: doc@zwecker.de Hamburg, Germany fon: +49 179 3994867 http://www.zwecker.de "Who is General Failure ? And why is he reading my disk

I have a linux AP with prism2 (hostap) wireless nic. I whant to filter traffic that pass betwen clients of the AP, this is layer 2 traffic (802.11) and netfilter does not sees it, at first i think in physdev target, but is for layer2 bridged interfaces, and this is not the case. There is a way to filter layer2 traffic independet if it is from a bridged iface or not? -- Luciano

Hi all! I am a long time lurker, but have not posted until now. My old trusted firewall machine broke a couple of weeks ago and I replaced it with a XEN domU that is using DNAT and has two interfaces. The firewall domU and the FTP server domU are both guests on the same dom0. All three machines are running Debian/etch (stable) and Shorewall has version 3.2.6. I can''t get FTP to work

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=44 Summary: ip_conntrak_ftp / ip_nat_ftp enhancements Product: netfilter/iptables Version: linux-2.4.x Platform: All OS/Version: All Status: NEW Severity: enhancement Priority: P2 Component: connection tracking AssignedTo:

--7ZAtKRhVyVSsbBD2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Netfilter Core Team Security Advisory =20 CVE: CAN-2003-0467 Subject: Netfilter / NAT Remote DoS Released: 01 Aug 2003 Effects: Under limited circumstances, a remote user may be able to crash

New install of CentOS 4.1; our first try at the 4.x. On previous 3.x installs we've used proftpd. On this one we're using (trying to use is a better statement of what we're going through) the default daemon, /usr/sbin/vsftpd. But we don't get anywhere. <snip> ftp> passiv Passive mode off. ftp> put ~/xorg.conf.work local: /home/jlasman/xorg.conf.work remote:

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=443 Summary: 2.6 kernel failing in NAT with significant outbound traffic Product: netfilter/iptables Version: linux-2.6.x Platform: i386 OS/Version: All Status: NEW Severity: blocker Priority: P2 Component: NAT AssignedTo:

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=68 ------- Additional Comments From laforge@netfilter.org 2003-03-20 10:55 ------- This looks strange. The BUG in slab.c tells us that there is a GFP_ATOMIC missing. This means that we are allocating kernel memory from softirq context with only GFP_KERNEL. If I understand your backtrace correctly, what happens is: - you are

I am trying to get the AllowFTP action to work for Net > DMZ traffic and FTP pasv. I know it is kind of working, as the user can log in, however, it fails at the port. I have had to open up some high ports for pasv to work. Now I know this aint cool, so does anyone know what a person has to do to get the AllowFTP action to work the same way it does if I was just ftp to the firewall, which does

I am using the madwifi driver with the patch to allow changing of the MAC address and I have two other ethernet interfaces plus a pppoe interface. My outbound connection is ppp0. I have ath0, eth1, eth2 for internal interfaces. I have added these three interfaces to br0. Once the traffic leaves the linux router, it gets NAT'd and goes out through ppp0. All traffic on all segments works

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=40 Summary: system hangs, Availability problems, maybe conntrack bug, possible reason here. Product: netfilter/iptables Version: linux-2.4.x Platform: i386 OS/Version: RedHat Linux Status: NEW Severity: critical Priority: P2

I have a prism 2.5 firmaware 1.5.6 but I can't make work this in 11Mbps on Freebsd 5.1 but the same card work perfect in Freebsd 5.0 help pls! this is my ifconfig wi0:flags=8947<UP,BROADCAST,DEBUG,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500 ether 00:60:b3:7a:a3:1d media: IEEE 802.11 Wireless Ethernet DS/11Mbps <hostap> (DS/2Mbps <hostap>) status:

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=71 ------- Additional Comments From laforge@netfilter.org 2003-03-30 21:18 ------- First of all: You didn't even specify the particular kernel version you are running, not even mentioning which versions of which patches you are using (if any). Secondly, I don't see anything strange in this setup. DNAT with FTP sessions

Hello, I'm trying to set up port forwarding in IPTABLES and so far it's working great from the internet, but when I attempt from my internal LAN using the External IP address, it fails. EXTIF="eth0" INTIF="eth1" EXTIP="xxx.xxx.xxx.xxx" INTNET="192.168.1.0/24" INTIP="192.168.1.1" PORTFWIP="192.168.1.13" >From the internet,