On Tue, Apr 02, 2002 at 07:26:44PM +0200, Mario 'BitKoenig' Holbe wrote: > lsmod on the gateway gives: > Module Size Used by Tainted: P > iptable_nat 15760 0 (unused) > ip_tables 13824 3 [iptable_nat] > ip_conntrack_ftp 4112 0 (unused) > ip_conntrack 16568 2 [iptable_nat ip_conntrack_ftp]
You need to load ip_nat_ftp as well to get FTP NATing to work - and you should also probably allow connections with state RELATED (I usually add a rule at the start of the FORWARD table that just accepts everything with state ESTABLISHED or RELATED), so that packets related to established connections will be permitted through. Though this should only matter if your default FORWARD policy is to DROP (I generally do so for security purposes). -- Derrik Pates | Sysadmin, Douglas School | #linuxOS on EFnet [EMAIL PROTECTED] | District (dsdk12.net) | #linuxOS on OPN
