On Sat, Apr 27, 2002 at 08:30:19PM +1000, hard__ware wrote: > For whoever that is interested ive completed tests with the Modules > ip_conntrack_ftp & ip_nat_ftp > > not installed, and i was able to serv FTP aswell as connect to FTP serevrs > on the internet without anyproblems ?
If your ftp server is bound to the external interface of your firewall and if your ftp client is bound to the external interface of your firewall and if your rules are completely open for both incoming and outgoing connections and if you're not natting in any direction then yes, you don't need these two modules. Actually you don't need any rules or in general you're not doing firewalling... Ramin > > i believe its only needed for Established Related purposes and it maybe > unsercure to do this i dont know ? > > FixMe: Does anyone know if this is Dangerous or a bad move to Use the FTP > Proto with those modules through your IPTables firewall ?? > >
