Re: ip_masq_ftp OUT: got PASV ERROR

Alex Pope Tue, 1 Feb 2000 02:34:18 -0800
On Mon, 31 Jan 2000, Vincenzo Lagioia wrote:

> Dear networkers,
> I'm using/testing ipchains on a Linux box (RedHat 6.1)
> All works fine but when I try to download (with FTP using IE5) some 3com's
> drivers I get "ip_masq_ftp OUT: got PASV"
> (http://support.3com.com/infodeli/tools/nic/3c905b.htm)
> 
> Can someone help me??
> 
> TIA
> Enzo Lagioia
> 
> 
> # lsmod
> Module                  Size  Used by
> ip_masq_ftp             3984   2
> eepro100               12112   2  (autoclean)
> 
> ################################################
> From /var/log/messages
> Jan 31 15:09:01 localhost kernel: ip_masq_ftp OUT: got PASV
> Jan 31 15:09:01 localhost kernel: Packet log: good-bad REJECT eth1 PROTO=6
> 192.168.1.41:1383 192.156.136.12:7034 L=44 S=0x00 I=34656 F=0x4000 T=127 SYN
> (#18)
<rest of logs snipped>

Obviously your ftp client (IE) uses passive mode ftp, so it needs to be
able to send an outbound TCP connection to any random port of the ftp
server, and i bet you have a firewall rule that is blocking on this. Check
the rules for the "good-bad" chain.

cheers,
alex

-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
Re: ip_masq_ftp OUT: got PASV ERROR

Reply via email to
