hmm .. i suppose that is right as well ....
Any thoughts on my last question ?
Thanks again,
Peter
----- Original Message -----
From: "Antony Stone" <Antony@xxxxxxxxxxxxxxxxxxxx>
To: <netfilter@xxxxxxxxxxxxxxxxxxx>
Sent: Thursday, May 27, 2004 3:06 PM
Subject: Re: ftp
On Thursday 27 May 2004 6:59 pm, Peter Marshall wrote:
> I actually don't need the dnat as I have internet routable ip's in my dmz
> .... Thank you for the info. My question now is, will your rule take care
> of both passive and active ftp ? I would prefer to just use active .. but
> I know many clients would have their own issues .. grr .. stupid ftp ....
ip_conntrack_ftp does handle both passive and active ftp.
Obviously if you're not doing DNAT then you don't need the ip_nat_ftp module
either.
Regards,
Antony.
--
Software development can be quick, high quality, or low cost.
The customer gets to pick any two out of three.
Please reply to the
list;
please don't CC
me.
