Bug 44806
| Summary: | FTP port command fails with links | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Product: | [Retired] Red Hat Linux | Reporter: | Henri Schlereth <henris> | ||||||
| Component: | links | Assignee: | Bernhard Rosenkraenzer <bero> | ||||||
| Status: | CLOSED DEFERRED | QA Contact: | David Lawrence <dkl> | ||||||
| Severity: | low | Docs Contact: | |||||||
| Priority: | low | ||||||||
| Version: | 7.1 | ||||||||
| Target Milestone: | --- | ||||||||
| Target Release: | --- | ||||||||
| Hardware: | i386 | ||||||||
| OS: | Linux | ||||||||
| Whiteboard: | |||||||||
| Fixed In Version: | Doc Type: | Bug Fix | |||||||
| Doc Text: | Story Points: | --- | |||||||
| Clone Of: | Environment: | ||||||||
| Last Closed: | 2001-06-27 02:23:02 UTC | Type: | --- | ||||||
| Regression: | --- | Mount Type: | --- | ||||||
| Documentation: | --- | CRM: | |||||||
| Verified Versions: | Category: | --- | |||||||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
| Cloudforms Team: | --- | Target Upstream Version: | |||||||
| Embargoed: | |||||||||
| Attachments: |
|
||||||||
|
Description
Henri Schlereth
2001-06-17 17:34:03 UTC
Created attachment 21206 [details]
ipchains config file
With the 2.4 kernel, ip_masq_ftp has been renamed. HTH. Sorry, you are right. I've mixed up the "lsmod" config of a RHL 7.1 machine running the 2.2.19 kernel and my workstation running the 2.4 kernel and iptables. Your ipchains script is not affected, though. It's just that the protocol specific masquerading support is not available. IP masquerade helpers for ipchains are not available in the 2.4 kernel. If you need to use any of the helper programs, you will need to switch to iptables and use ftp conntracking, et al. Alternative workaround: Use passive mode FTP in all software that supports it. Consult the software documentation for each program that fails to determine if it supports passive mode FTP or not. Since I am not ready yet to switch to iptables your suggestion did the trick with only one exception. Links has no documentation, no man page to set passive mode. I am re-opening this as a feature enhancement against links. I have installed and configured iptables and I still get a port command failed with links. While I am still researching to see if I did anything wrong , I was informed by the maintainer that links doesnt do passive ftp. The only solution available is to not use links (e.g ftp://ftp.isc.org) or come up with some sort of proxy method to regain full functionality links is not a program created here, and so it is unlikely we would add support for passive mode FTP to it, especially when there are other tools that work through passive ftp. It isn't my package however so not my call. When changing packages, be sure to also assign to the new component owner as well. Take care, TTYL I've passed this feature request on to the links mailing list - maybe someone has the time to add this before I do. I replaced a minimal iptables with non-passive ftp support enabled. I switched lynx and wget back to non-passive mode and they work. Astonishingly enough links still gets a port command failed even with iptables. I am enclosing as an attachment my working rc.firewall. You may want to pass this on to the links people. I was trying to make this work because I thought links was going to replace lynx. Evidently not ready for primetime. Created attachment 22166 [details]
enclosed rc.firewall
|