[Shorewall-users] pasv ftp

Tom Eastep teastep@shorewall.net
Sat, 19 Jan 2002 05:51:20 -0800


On Saturday 19 January 2002 05:36 am, I wrote:

>
> I don't have to open them -- they will be opened dynamically at the tim=
e of
> the PASV command. This of course assumes ftp connection tracking in you=
r
> kernel or that you have loaded the ip_conntrack_ftp module.
>

BTW -- Shorewall automatically loads ip_conntrack_ftp and ip_nat_ftp if t=
hey=20
exist in the MODULESDIR (usually=20
/lib/modules/`uname -r`/kernel/ipv4/netfilter).

-Tom
--=20
Tom Eastep    \ A Firewall for Linux 2.4.*
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net