On 08/22/2018 03:47 PM, ToddAndMargo wrote:
Hi All,
My iptables firewall ported from RHEL won't connect to ftp sites
and throws this error (written by me years ago):
WARNING: active FTP rules have been selected but one or
more necessary modules have not been detected
In /etc/sysconfig/iptables-config, you must add ip_nat_ftp
and ip_conntrack_ftp to IPTABLES_MODULES. Delimiter is a
space. For example:
IPTABLES_MODULES=ip_nat_ftp ip_conntrack_ftp
To load changes, use:
# /etc/rc.d/init.d/iptables restart
# systemctl restart iptables
To check if modules are loaded, use
lsmod
1) is Fedora doing FTP differently in iptables?
2) where do I find
ip_nat_ftp
ip_conntrack_ftp
now a days?
Many thanks,
-T
Figured it out.
Reference:
https://serverfault.com/questions/887309/iptables-nf-conntrack-ftp-not-working
# vi /etc/modprobe.d/iptables.conf
options nf_conntrack_ftp ports=21
# systemctl restart iptables.
Problem solved
Talk about freaking obscure !!!!!!!!
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA HHHHHHHHHHHHHHHHHHHHHHHHHHHH !!!!!!!!!
Thank you all for your help and patience.
-T
_______________________________________________
users mailing list -- users@lists.fedoraproject.org
To unsubscribe send an email to users-le...@lists.fedoraproject.org
Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedoraproject.org/archives/list/users@lists.fedoraproject.org/message/A7BZFE4NZ67GN2FDS6Y6KCVRFOBJANPM/
