Hi Rene, please subscribe to suse-security mailinglist. I'll fwd. your question to this list. Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47 ---------- Forwarded message ---------- Date: Wed, 17 Nov 1999 11:49:08 +0100 From: Rene Bangemann <rbrabe@wvr.tfh-wildau.de> To: Thomas Biege <thomas@suse.de> Subject: ipchains and masquerading Hi, I´m using S.u.S.E. Linx 6.1 with ipchains as a firewall. I´ve got a problem using ftp through the firewall from a private network using IP´s 192.168.x.x. If I connect to an ftp-Server I can login, but if I use commands like "ls" (which is using the PORT Command) I always get error 500 ("500 Invalid PORT Command. ftp: bind: Address already in use") or 501 ("501 IP Address for data destination doesn't match client's. ftp: bind: Address already in use"). This happens only, if masquerading is used. If I use ftp from a computer which got a official IP, everything works fine. Does anyone got an idea or a solution of this problem?? Thx in advance for your help. Rene P.S.: port number 20 and 21 are open to outwards.
i set up m,asqueraddin yesterday, and i need a ftp-plugin for ipchains. you load it by running as root> insmod ip_masq_ftp hope this helps, Alex On 17 Nov 1999, Thomas Biege wrote:
Hi Rene, please subscribe to suse-security mailinglist. I'll fwd. your question to this list.
Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47
---------- Forwarded message ---------- Date: Wed, 17 Nov 1999 11:49:08 +0100 From: Rene Bangemann <rbrabe@wvr.tfh-wildau.de> To: Thomas Biege <thomas@suse.de> Subject: ipchains and masquerading
Hi,
I´m using S.u.S.E. Linx 6.1 with ipchains as a firewall. I´ve got a problem using ftp through the firewall from a private network using IP´s 192.168.x.x. If I connect to an ftp-Server I can login, but if I use commands like "ls" (which is using the PORT Command) I always get error 500 ("500 Invalid PORT Command. ftp: bind: Address already in use") or 501 ("501 IP Address for data destination doesn't match client's. ftp: bind: Address already in use").
This happens only, if masquerading is used. If I use ftp from a computer which got a official IP, everything works fine. Does anyone got an idea or a solution of this problem??
Thx in advance for your help.
Rene
P.S.: port number 20 and 21 are open to outwards.
-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
Rene, Try insmod ip_masq_ftp. HTH -- Frank Hart - mailto:frhart@home.nl SuSE Linux Kernel 2.2.13 on a i586 100 Mhz with 24 Mb RAM -- God is Dead -- Nietzsche Nietzsche is Dead -- God Nietzsche is God -- The Dead ----- Original Message ----- From: Thomas Biege <thomas@suse.de> To: <suse-security@suse.de> Cc: <rbrabe@wvr.tfh-wildau.de> Sent: Wednesday, November 17, 1999 2:54 PM Subject: [suse-security] ipchains and masquerading (fwd) Hi Rene, please subscribe to suse-security mailinglist. I'll fwd. your question to this list. Bye, Thomas -- Thomas Biege, SuSE GmbH, Schanzaeckerstr. 10, 90443 Nuernberg E@mail: thomas@suse.de Function: Security Support & Auditing "lynx -source http://www.suse.de/~thomas/thomas.pgp | pgp -fka" Key fingerprint = 09 48 F2 FD 81 F7 E7 98 6D C7 36 F1 96 6A 12 47 ---------- Forwarded message ---------- Date: Wed, 17 Nov 1999 11:49:08 +0100 From: Rene Bangemann <rbrabe@wvr.tfh-wildau.de> To: Thomas Biege <thomas@suse.de> Subject: ipchains and masquerading Hi, I´m using S.u.S.E. Linx 6.1 with ipchains as a firewall. I´ve got a problem using ftp through the firewall from a private network using IP´s 192.168.x.x. If I connect to an ftp-Server I can login, but if I use commands like "ls" (which is using the PORT Command) I always get error 500 ("500 Invalid PORT Command. ftp: bind: Address already in use") or 501 ("501 IP Address for data destination doesn't match client's. ftp: bind: Address already in use"). This happens only, if masquerading is used. If I use ftp from a computer which got a official IP, everything works fine. Does anyone got an idea or a solution of this problem?? Thx in advance for your help. Rene P.S.: port number 20 and 21 are open to outwards. -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
participants (3)
-
Frank Hart -
Robert Alexander Stragies -
Thomas Biege