Am 14.11.2012 12:24, schrieb lee: > FTP isn't using random ports. It's using two ports, and firewalls need > to be set up correctly to deal with that. There's a kernel module for > this very purpose. ftp is ALWAYS using random ports active: on the client side passive: on the server side so on one side there must be a firewall rule or connection tracking for sure depending on the ftp-mode, how the tracking is made is a implementation detail _________________________ and if you read dmesg-messages with recent kernels you will see that this is in fact a topic in teh near future nf_conntrack: automatic helper assignment is deprecated and it will be removed soon. Use the iptables CT target to attach helpers instead.
Attachment:
signature.asc
Description: OpenPGP digital signature
-- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
