Re: FTP and Masquerading - Pascal Hambourg

Linux Netfilter discussions
 help / color / mirror / Atom feed

From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
To: Netfilter <netfilter@lists.netfilter.org>
Subject: Re: FTP and Masquerading
Date: Sun, 11 Jun 2006 12:15:57 +0200	[thread overview]
Message-ID: <448BED5D.8010306@plouf.fr.eu.org> (raw)
In-Reply-To: <7e53eda20606110123v3b45c520g384338a877affcb0@mail.gmail.com>

Hello,

Syed AbuBakr a écrit :
> I am  new to linux and need some guidance.

http://www.netfilter.org/documentation/index.html#documentation-howto

> PROBLEM:
> FTP is not working. My internal users can not connect external ftp and
> vice versa.

See the NAT HOWTO section, § "7. Special Protocols".
Try to load the FTP connection tracking and NAT helper modules :
# modprobe ip_conntrack_ftp
# modprobe ip_nat_ftp

If it still does not work, you'll have to give more details.
What exactly in FTP does not work and how do you see it does not work ?
- Establish a control connection ?
- Download files (including directory listing) ?
- Upload files ?
- Passive mode, active mode ?
Are you internal users set up explicitly to use the proxy for FTP ?

> SCENARIO:
> 1. I am using SQUID for proxy services.

Which services ? HTTP only or also FTP ?

> 2. OS is FedoraCore 5
> 3. Using transparent proxy

Squid will do transparent proxy only for HTTP, so that should not 
concern FTP.

> 4. Masquerading my out bound traffic.
> 5. All packages including kernel are same as they come with the
> standard distro of FC-5
> 6. Install time Firewall is disabled, so i have only a couple of rules
> in my ip tables.

Which rules ? You can list them with the command 'iptables-save'.

> I dont know how to recompile kernel or insert modules, So please do me
> a favour and give me a step by step how to of it.

Hopefully you don't need to recompile anything. And there is no step by 
step procedure unless you give *full* information about your setup.

next prev parent reply	other threads:[~2006-06-11 10:15 UTC|newest]

Thread overview: 4+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-06-11  8:23 FTP and Masquerading Syed AbuBakr
2006-06-11 10:15 ` Pascal Hambourg [this message]
  -- strict thread matches above, loose matches on Subject: below --
2006-06-13 13:10 Syed AbuBakr
2006-06-13 19:04 ` Alexandru Dragoi

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=448BED5D.8010306@plouf.fr.eu.org \
    --to=pascal.mail@plouf.fr.eu.org \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox