On Sat, May 25, 2002 at 08:56:44PM +0530, Arindam Haldar wrote: > hi all, > > after going thru the archives & trying to understand active & passive > rule set, i want help from u to know --> > > as the destination port keeps changing on a distant(busy) ftp server, so > how can one use/define ports in ip_contrack_ftp ?
The ports you're talking here are the control ports. The ports that are changing are the data ports and will be caught and acted upon by ip_conntrack_ftp. So, if you're connecting to port 21 (standard port) you shouldn't worry about the changing ports for the data. Ramin > one can increse the numbers of ports but how to define the ports(am not > talking about the syntax). > if im not wrong defining a range of ports will only help with connection > from those ports, what if the port is out of range from the ones defined > in ip_conntrack_ftp ? > > awaiting ur help on this > A.H >
