I don't know about what parameters to give the kernel but If you wan't
to change the code I can help you.
linux/net/ipv4/netfilter/ip_conntrack_ftp.c
static int __init init(void)
{
int i, ret;
if(ports[0] == 0)
ports[0]=21;
.....
Change the ports thing to:
if(ports[0] == 0) {
ports[0]=21;
ports[1]=5432;
}
Do the same in ip_nat_ftp, looks slightly diffrent but not much.
Regards
Magnus
P.S I have not tried this myself but reading the code I think it should
work. D.S
On Fri, May 17, 2002 at 11:32:54AM +0200, Rainer Schweitzer wrote:
> Hi,
>
> I wrote this mail yesterday, but it seemed not to came through.
> If it will appear a second time, please ignore.
>
> consider the following:
> You want to connect to an ftp server running on, say,
> port 5432 from Your internal LAN. Between is a Linux
> box with netfilter, masquerading or S'natting respectively
> the internal addresses.
>
> All works fine with ftp servers on port 21, but on port
> 5432 connection tracking does not work for the ftp protocol.
>
> I'm aware, that i can do a
>
> modprobe ip_conntrack_ftp ports=21,5432
> modprobe ip_nat_ftp ports=21,5432
>
> to solve this problem. But what, if I have a monolithic
> kernel with all the netfilter code compiled into the
> Linux kernel? In this case there is no such thing like
> modprobe.
>
> Any idea how to pass these port arguments directly to the
> kernel, maybe a boot option I can pass to the kernel at
> booting time, or an advice what piece of the source code
> to change in what way (iptables 1.2.6a, linux 2.4.18)
> to make this work?
>
> TIA, Rainer
>
>
