On 6/15/05, Alexander Dalloz <ad+lists@xxxxxxxxx> wrote: > Am Mi, den 15.06.2005 schrieb kristina clair um 20:34: > > > If it were a firewall problem, shouldn't ALL connections be refused? > > I'm always able to connect from the command line ftp on my personal > > computer. > > I bet iptables is configured differently on RH7.3 and FC3 machines. I think you misunderstood me. I am always able to connect to the FC3 machines from my command line ftp client. If it were an iptables problem, the firewall wouldn't be letting any connections in for ftp. Right? > > > Also, we use a shared passwd/shadow file across all of our servers. > > So if the password in /etc/shadow was bad, I would think that the > > redhat 7.3 boxes would also be responding with password errors. > > > > I don't think it's a password problem, though. According to the > > verbose logs, the users are able to log in, but once they issue a > > command, their ftp programs disconnect with no error logs on our end. > > And yes, they are using passive mode :). > > > Kristina > > Try following on the FC3 hosts: > > modprobe ip_conntrack_ftp > > I am relatively sure that will fix your problem. Then add this module to > /etc/sysconfig/iptables-config. > > Alexander > > > -- > Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773 > legal statement: http://www.uni-x.org/legal.html > Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.11-1.27_FC2smp > Serendipity 20:38:51 up 22 days, 19:16, load average: 0.09, 0.19, 0.18 > > > BodyID:96153668.2.n.logpart (stored separately) > > -- kristina clair, latest stable version: 2.9 latest beta version: 3.0-pre