Re: FTP and Masquerading - Pascal Hambourg

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
To: Netfilter <netfilter@lists.netfilter.org>
Subject: Re: FTP and Masquerading
Date: Sun, 11 Jun 2006 12:15:57 +0200	[thread overview]
Message-ID: <448BED5D.8010306@plouf.fr.eu.org> (raw)
In-Reply-To: <7e53eda20606110123v3b45c520g384338a877affcb0@mail.gmail.com>

Hello,

Syed AbuBakr a écrit :
> I am  new to linux and need some guidance.

http://www.netfilter.org/documentation/index.html#documentation-howto

> PROBLEM:
> FTP is not working. My internal users can not connect external ftp and
> vice versa.

See the NAT HOWTO section, § "7. Special Protocols".
Try to load the FTP connection tracking and NAT helper modules :
# modprobe ip_conntrack_ftp
# modprobe ip_nat_ftp

If it still does not work, you'll have to give more details.
What exactly in FTP does not work and how do you see it does not work ?
- Establish a control connection ?
- Download files (including directory listing) ?
- Upload files ?
- Passive mode, active mode ?
Are you internal users set up explicitly to use the proxy for FTP ?

> SCENARIO:
> 1. I am using SQUID for proxy services.

Which services ? HTTP only or also FTP ?

> 2. OS is FedoraCore 5
> 3. Using transparent proxy

Squid will do transparent proxy only for HTTP, so that should not 
concern FTP.

> 4. Masquerading my out bound traffic.
> 5. All packages including kernel are same as they come with the
> standard distro of FC-5
> 6. Install time Firewall is disabled, so i have only a couple of rules
> in my ip tables.

Which rules ? You can list them with the command 'iptables-save'.

> I dont know how to recompile kernel or insert modules, So please do me
> a favour and give me a step by step how to of it.

Hopefully you don't need to recompile anything. And there is no step by 
step procedure unless you give *full* information about your setup.

next prev parent reply	other threads:[~2006-06-11 10:15 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-06-11  8:23 FTP and Masquerading Syed AbuBakr
2006-06-11 10:15 ` Pascal Hambourg [this message]
  -- strict thread matches above, loose matches on Subject: below --
2006-06-13 13:10 Syed AbuBakr
2006-06-13 19:04 ` Alexandru Dragoi

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=448BED5D.8010306@plouf.fr.eu.org \
    --to=pascal.mail@plouf.fr.eu.org \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.