Hello,
I found problem with active ftp masqarading in kernel 2.6.11.
I use linux firewall with masquarading for the local network.
When I run ftp client in active mode on any machines in the local network,
I can connect to remote ftp server in outside network (Internet). But
when I get "mget *" command in this ftp session, client downloads about
5 files only and then writes "500 R not understood" and then
"ftp: bind: Address already in use" and it stops.
I tried capture some packets and it looks firewall leaves off masqurading for this sessin.
When I switch ftp client to "passive" mode, all works fine.
When I run kernel 2.6.9 (and previous) on the firewall, all works fine (both active and passive mode).
I tried it on miscellaneous firewalls (with 2.6.11 kernel), miscellaneous ftp servers and miscellaneous ftp clients (in active mode) with same results. I tried both iptables-1.3.1 and iptables-1.3.0 without success.
Regards,
Milos Wimmer