On 08/22/2018 03:47 PM, ToddAndMargo wrote:
Hi All, My iptables firewall ported from RHEL won't connect to ftp sites and throws this error (written by me years ago): WARNING: active FTP rules have been selected but one or more necessary modules have not been detected In /etc/sysconfig/iptables-config, you must add ip_nat_ftp and ip_conntrack_ftp to IPTABLES_MODULES. Delimiter is a space. For example: IPTABLES_MODULES=ip_nat_ftp ip_conntrack_ftp To load changes, use: # /etc/rc.d/init.d/iptables restart # systemctl restart iptables To check if modules are loaded, use lsmod 1) is Fedora doing FTP differently in iptables? 2) where do I find ip_nat_ftp ip_conntrack_ftp now a days? Many thanks, -T
Figured it out. Reference: https://serverfault.com/questions/887309/iptables-nf-conntrack-ftp-not-working # vi /etc/modprobe.d/iptables.conf options nf_conntrack_ftp ports=21 # systemctl restart iptables. Problem solved Talk about freaking obscure !!!!!!!! AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HHHHHHHHHHHHHHHHHHHHHHHHHHHH !!!!!!!!! Thank you all for your help and patience. -T _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx/message/A7BZFE4NZ67GN2FDS6Y6KCVRFOBJANPM/
