> Active FTP seems to need to open new sockets. > > This creates problems for NAT'ing firewalls. > > What is easiest way to open the right ports > > and do NAT'ing back to clients on 192.168.x.y IP addresses? modprobe ip_conntrack_ftp modprobe ip_nat_ftp Use stateful forwarding. http://iptables-tutorial.frozentux.net/iptables-tutorial.html Gr, Rob
