From mboxrd@z Thu Jan  1 00:00:00 1970
From: Ramin Alidousti <ramin@UU.NET>
Date: Sun, 22 Apr 2001 04:23:08 +0000
Subject: Re: [LARTC] How to limit passive ftp data ?
Message-Id: <marc-lartc-98791352810414@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-98791150509030@msgid-missing>
In-Reply-To: <marc-lartc-98791150509030@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

You might be able to use the RELATED option for the ftp conntrack
and mark them. I've not tried this myself, so I don't know if this
works. Let us know if it does.

Ramin

On Sun, Apr 22, 2001 at 10:59:31AM -0400, johan@pinguind.co.id wrote:

> Dear guys..
> We know all, that passive ftp took random port at server side, not port 20.
> How to limit this passive ftp problem ?
> Use mangle feature in iptables ? but how ?
> any idea ?
> 
> Thanks a lot.
> 
> Best Regards
> 
> Johan
> 
> 
> 
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/2.4Routing/

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/2.4Routing/