[Shorewall-users] pasv ftp

Tom Eastep teastep@shorewall.net
Sat, 19 Jan 2002 05:51:20 -0800

On Saturday 19 January 2002 05:36 am, I wrote:

> I don't have to open them -- they will be opened dynamically at the tim=
e of
> the PASV command. This of course assumes ftp connection tracking in you=
> kernel or that you have loaded the ip_conntrack_ftp module.

BTW -- Shorewall automatically loads ip_conntrack_ftp and ip_nat_ftp if t=
exist in the MODULESDIR (usually=20
/lib/modules/`uname -r`/kernel/ipv4/netfilter).

Tom Eastep    \ A Firewall for Linux 2.4.*
AIM: tmeastep  \ http://www.shorewall.net
ICQ: #60745924  \ teastep@shorewall.net