I am using squid as transparent proxy.
I am using ipchains for forwarding other than http request form one
interface to another.(eth0 to eth1)
I set chains for ftp,telnet and other things,
When i do ftp i am getting following error
[sathi@cache sathi]$ ftp 63.2.1.2
Connected to 63.2.1.2.
220 polyserver FTP server (Version wu-2.6.1-16) ready.
Name (63.2.1.2:sathi): bam
331 Password required for bam.
Password:
230 User bam logged in.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
502 Illegal PORT Command
ftp: bind: Address already in use
ftp>
I set rules as
/usr/local/ipchains-1.3.10/ipchains -A input -j REDIRECT 8080 -p tcp -s
0.0.0.0/0 -d 0.0.0.0/0 80
/usr/local/ipchains-1.3.10/ipchains -N good-bad
/usr/local/ipchains-1.3.10/ipchains -A forward -s 172.16.1.0/24 -i eth1 -j
good-bad
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport 21 -j MASQ
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport smtp -j MASQ
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport 20 -j MASQ
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport telnet -j
MASQ
I do not know where i done error.
please suggest the correct rule to overcome the problem
Thanks in advance
-Jack
Received on Sat Sep 01 2001 - 01:49:50 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:02:01 MST