> Isn't 443 SSL over HTTP? :) You can use SSL over anything. telnet over SSL is called ssh. > SSL FTP client (does anybody use this?) Sure, some people use this. (Not me, yet) It works like ftp or http - requires to exchange an x.509 certificate and then goes on with an encrypted conenction. > I beleive has the services entry of 'sftp' and is port 115. I've not > seen a production implementation of this though. I have not been using that ssl ftp, but I am sure it is not sftp, nor OpenSSH related. > If using the later however, given that the channel will be encrypted, I > don't see how this conntrack would work at all. If ftp-control is encrypted too, connection tracking is impossible. And doing rewriting over nat even more impossible. Regards, Maciej
