Description of problem: Passive ftp connections are not working after updating to from 5.6 to 5.7 and ip_nat_ftp kernel module is loaded. Version-Release number of selected component (if applicable): kernel-2.6.18-274.3.1.el5 Steps to Reproduce: 1. Install vsftpd 2. Add ip_conntrack_ftp and ip_nat_ftp into /etc/sysconfig/iptable-config 3. Restart iptables 4. Connect to the ftp server from a remote machine Actual results using kernel-2.6.18-274.3.1.el5: 220 (vsFTPd 2.0.5) user USERNAME 331 Please specify the password. pass PASSWORD 230 Login successful. type i 200 Switching to Binary mode. pasv Error: Connection timed out Error: Failed to retrieve directory listing Expected results (when downgrading kernel to 2.6.18-238.el5): 220 (vsFTPd 2.0.5) user USERNAME 331 Please specify the password. pass PASSWORD 230 Login successful. type i 200 Switching to Binary mode. pasv 227 Entering Passive Mode (192,168,1,6,115,196) Additional info: This issue seems introduced by RHSA-2011-1065 kernel update (RHBZ#642388 fix) [1] http://rhn.redhat.com/errata/RHSA-2011-1065.html [2] https://bugzilla.redhat.com/show_bug.cgi?id=642388
Thank you for submitting this request for inclusion in Red Hat Enterprise Linux 5. We've carefully evaluated the request, but are unable to include it in the last planned RHEL5 minor release. This Bugzilla will soon be CLOSED as WONTFIX. To request that Red Hat re-consider this request, please re-open the bugzilla via appropriate support channels and provide additional business and/or technical details about its importance to you.
Thank you for submitting this request for inclusion in Red Hat Enterprise Linux 5. We've carefully evaluated the request, but are unable to include it in RHEL5 stream. If the issue is critical for your business, please provide additional business justification through the appropriate support channels (https://access.redhat.com/site/support).
Removing NEEDINFO, please check CentOS bug tracker for more infos.