On 2011-04-28 11:36, thatblokefromstoke wrote:
>> Run “lsmod | grep trac”, you should see nf_conntrack and another for
>> ipv4 & 6.
> Hi - Ive run lsmod and can see nothing to do with nf_conntrack or the
> I just get a list of hardware, grep trac does nothing from my terminal,
> ive tried them as separate commands and together.
It is “lsmod | grep trac”, and there is a vertical bar in the middle you
have to type as well. That’s a pipe.
> “But it perhaps it simply needs adjusting “FW_LOAD_MODULES” or
> means absolutely nothing to me, is this to be inoutted in the terminal,
> and if so , with what parameters?
You have to edit the firewall configuration, file
/etc/sysconfig/SuSEfirewall. It is a text file full of comments that
explain it all.
I think what you need is:
but you may also need FW_SERVICES_ACCEPT_RELATED_EXT, and here I don’t know
what you should put. The syntax is like this:
but the range depends on the server, IIRC.
The problem started with a change documented here:
From the wikipedia:
FTP can be run in active or passive mode, which determine how the data
connection is established. In active mode, the client sends the server the
IP address and port number on which the client will listen, and the server
initiates the TCP connection. In situations where the client is behind a
firewall and unable to accept incoming TCP connections, passive mode may be
used. In this mode the client sends a PASV command to the server and
receives an IP address and port number in return. The client uses these to
open the data connection to the server. Both modes were updated in
September 1998 to add support for IPv6. Other changes were made to passive
mode at that time, making it extended passive mode.
Active mode is easy to configure on the server firewall, difficult on the
client - as you are experiencing.
Cheers / Saludos,
Carlos E. R.
(from 11.2 x86_64 “Emerald” at Telcontar)