Hi On Tuesday 29 July 2003 14:52, Andrew J. Meader wrote: > Hi, > > I just ran into this just yesterday. I was forgetting to load > ip_conntrack_ftp in my iptables init script. For grins, here is a > snip from my init script: That is not the problem. The module is loaded. But the module doesn't track FTP-connections on non-standard ports. So FTP-connections to theses servers are not "allowed" by the "iptables .... -m --state RELATED,ESTABLISHED ...."-stuff. > > # Firewall Modules ~ assuming modularized kernel > /sbin/modprobe ip_tables > /sbin/modprobe iptable_nat > /sbin/modprobe ip_conntrack > /sbin/modprobe ip_conntrack_ftp > > YMMV - your modules may vary :) greetings Axel
