From: Giovanni Cardone <g_cardone@libero.it>
To: netfilter@lists.samba.org
Subject: Re: ip_conntrack_ftp doesn't work
Date: Tue, 25 Jun 2002 11:31:46 +0200 [thread overview]
Message-ID: <20020625113146.B255@rainbow> (raw)
In-Reply-To: <Pine.LNX.4.33.0206251044140.4927-100000@blackhole.kfki.hu>; from kadlec@blackhole.kfki.hu on Tue, Jun 25, 2002 at 10:52:12AM +0200
On Tue, Jun 25, 2002 at 10:52:12AM +0200, you wrote:
> What is the MTU on your PPP link? Don't you see log entries from the
> ip_conntrack_ftp module like
>
> conntrack_ftp: partial PORT nnnnnnn...
>
> I suspect that your link has a very low MTU size and the FTP conntrack
> module don't have a chance to get the whole command pattern in one packet.
>
> [The module usage counter of the ip_conntrack_ftp module has nothing to do
> with the number of the handled FTP session. It says "No other module
> depends on me"].
I can't understand so well what you are saying... I'm not yet so smart like
you :)
Anyway, I tried this(give me some hints, if I'm wrong) :
darkstar\$ /sbin/ifconfig | egrep 'MTU'
UP LOOPBACK RUNNING MTU:16436 Metric:1
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1500 Metric:1
So, it looks like 1500. Is it so small? Are you right, then?
> If your MTU is really small and must be kept small, then the case cannot
> be handled by the netfilter conntrack subsystem :-(.
I hope that's not my case(I know, I always have the passive type then...) :(
next prev parent reply other threads:[~2002-06-25 9:31 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-06-14 17:42 ip_conntrack_ftp doesn't work Giovanni Cardone
2002-06-24 19:16 ` Adam Young
2002-06-24 19:30 ` Antony Stone
2002-06-25 9:23 ` Giovanni Cardone
2002-06-25 8:52 ` Jozsef Kadlecsik
2002-06-25 9:27 ` Allowing limited broadcasts between LAN <-> DMZ? Chris
2002-06-25 11:42 ` Antony Stone
2002-06-25 9:31 ` Giovanni Cardone [this message]
2002-06-25 10:03 ` ip_conntrack_ftp doesn't work Jozsef Kadlecsik
2002-06-26 0:17 ` Giovanni Cardone
-- strict thread matches above, loose matches on Subject: below --
2002-06-14 17:42 Giovanni Cardone
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20020625113146.B255@rainbow \
--to=g_cardone@libero.it \
--cc=netfilter@lists.samba.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox