"Anurag Jalan (by way of Anurag Jalan )" wrote:
> Hi all,
>
> I have a Redhat 6.2 intranet server/router which masquerades my
> 192.168.1.x network as 192.168.32.254 to my SuSe 6.4 firewall/ISDN TA
> gateway.On the Redhat I just have a simple MASQ rule in my forward chain.
>
> I use firewals on my suSE box to setup masquerading and packet
> filtering.FW_ALLOW_ICOMING_HIGHPORTS_TCP is set to'yes' (in firewals
> config) ip_masq_ftp is loaded on both the Linux machines .
>
> The Setup works great for everything *except* FTP uploads ( to my
> Hosting Company )..I can't uploadto my site either from the Win98s or the
> Linux boxes. I have tried both the Active & PASV modes.To make sure
> that firewals wasn't the problem, i disabled it and added just the MASQ
> rule to the forward cahin, but couldn't get FTP to work.
Have you tried from the firewall machine itself?
Are the rules set to log denied and rejected packets? If so what do the logs
show? If not add the -L to the rules and then looka th the logs to see
which rule is catching it.
A couple of years ago, I had a problem with sprynet's mailserver making an
ident call that I could never satisfy through the masq firewall. Might be
something specific to your Hosting company. Can you ftp to/ from somewhere
else? or are all ftps down.
If none of this gets you going in the right direction, I would run tcpdump
on the firewall and take a look at what is happening that way. tcpdump -w
/tmp/ftptest.tcpdump will write the stuff to a file that you can then use
tcpdump -r /tmp/ftptest.tcpdump |less to scroll through and try to see what
is happening.
Some of the gurus may have some other ideas but this is what I do when I am
having trouble. Ususally means I get to learn something along the way.
Hope this helps.
Bret
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
