On 08/22/2018 03:47 PM, ToddAndMargo wrote: > Hi All, > > My iptables firewall ported from RHEL won't connect to ftp sites > and throws this error (written by me years ago): > > > WARNING: active FTP rules have been selected but one or > more necessary modules have not been detected > > In /etc/sysconfig/iptables-config, you must add ip_nat_ftp > and ip_conntrack_ftp to IPTABLES_MODULES. Delimiter is a > space. For example: > IPTABLES_MODULES=ip_nat_ftp ip_conntrack_ftp > > To load changes, use: > # /etc/rc.d/init.d/iptables restart > # systemctl restart iptables > > To check if modules are loaded, use > lsmod > > > 1) is Fedora doing FTP differently in iptables? No, but Fedora, by defaults, locks down the network a lot more than older RHEL systems. If you're using Network Manager, you can use it to open the FTP ports necessary on your machine. Or you can edit the /etc/sysconfig/iptables-config file and add those modules > 2) where do I find > ip_nat_ftp > ip_conntrack_ftp> now a days? They're included in the kernel RPM. If you must know, they're located in: /lib/modules/`uname -r`/kernel/net/netfilter ---------------------------------------------------------------------- - Rick Stevens, Systems Engineer, AllDigital ricks@xxxxxxxxxxxxxx - - AIM/Skype: therps2 ICQ: 226437340 Yahoo: origrps2 - - - - You know the old saying--any technology sufficiently advanced is - - indistinguishable from a Perl script - - --Programming Perl, 2nd Edition - ---------------------------------------------------------------------- _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx/message/RSM2BZEC2UIRAIYMPFPDFR6DMLZTQWWP/
