Ahhhh ... I feel so stupid ... On the target system, the port is 8021 mapped
to 21 on the backend system. (forgot to mention that ... sorry)
Is there a way to tell the ip_masq_ftp module to monitor an additional port?
-----Original Message-----
From: Charles Boening [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 10, 2000 4:19 PM
To: '[EMAIL PROTECTED]'
Subject: RE: FTP Firewall problems
no offense ... it's a learning experience for all ....
I don't think I have that patch applied ... I'll look into it.
Thanks for the thought.
Charlie
-----Original Message-----
From: Kevin Holmquist [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 10, 2000 3:24 PM
To: [EMAIL PROTECTED]
Subject: Re: FTP Firewall problems
I don't mean to offend, but is your firewall running the MASQ_FTP patch?
Kevin
>From: Charles Boening <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]>
>Subject: FTP Firewall problems
>Date: Tue, 10 Oct 2000 13:30:25 -0700
>
>I'm having a little problem here with FTP. I'm trying to ftp from a
>machine
>behind a linux firewall, across the internet to a machine behind a linux
>firewall ... the target machine is an SCO Unix system behind a RH 6.2
>firewall running ipmasqadm to reverse-map port 21. I can get a control
>connection just fine, but can't get a data connection.
>
>I'm running on a Win2k system using CuteFTP. The error I get is:
> "425 Can't build data connection: No route to host."
>
>and prior to the error message I see where the client sent "PORT
>10,5,10,18,13,111". This all makes sense and I understand the error, but
>I'm not sure how to get around it.
>
>I already know PASV mode won't work 'cause the SCO system is using a
>private
>address.
>
>Access from the linux firewall on my site works fine, but I'd like to be
>able to access from behind my firewall.
>
>Any ideas?
>
>#####################################################
># I'm trying to connect from this side to the other #
>#####################################################
>Windows Machines |\
>Linux Workstation |---> Access from here doesn't work
> SCO UNIX |/
> |
> hub
> |
> eth1 (10.5.5.1)
> |
> LINUX <---- Access from here is ok
> |
> T1 Static IP (Public)
> |
> |
> Internet
> |
> |
> DSL (Public)
> |
> LINUX (map port 21 here)
> |
> eth1 (10.30.1.1)
> |
> hub
> |
>Windows/SCO Unix
>#####################################################
># Target system is here #
>#####################################################
>
>
>Thanks
>Charles J. Boening
>[EMAIL PROTECTED]
>
>
>
>_______________________________________________
>Redhat-list mailing list
>[EMAIL PROTECTED]
>https://listman.redhat.com/mailman/listinfo/redhat-list
_________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
Share information about yourself, create your own public profile at
http://profiles.msn.com.
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
