Hello ! I have installed a proxy

[haux]

Hello !

I have installed a proxy (squid) with success but i can't open ftp session, so i had configured iptables to permitt the ftp sessions, but my problem now is i can open ftp session (login+pass) but when tape 'dir i et:
'500 illegal PORT Command'

My configuration is:
-----------------------------------
in the file /etc/sysconfig/network
NETWORKING=yes
FORWARD_IPV4=true
HOSTNAME=tavel.kervao.fr
DOMAINNAME=kervao.fr
GATEWAY=
GATEWAYDEV=
--------------------------------------
in the file /etc/rc.d/rc.local

modprobe iptable_nat

echo 1 > /proc/sys/net/ipv4/ip_forward
echo 1 > /proc/sys/net/ipv4/conf/all/rp_filter

iptables -t nat -A POSTROUTING -s 192.168.13.0/24 -j MASQUERADE
# Allows forwarding specifically to our LAN
iptables -A FORWARD -s 192.168.13.0/24 -j ACCEPT
---------------------------------------------
any suggestion i am lost

NB in the FTP server i can read the line
Refused PORT 192.168.10.40,1194 from squid.XXX.com [IP_of_SQUID]

is it normal that i can see the private IP in the log of the FTP server (which is outside our local network !)

 

[haux]

Coucou ;-)

I had just resolved the problem ;-))))))))))

I have not added this to my script :

/sbin/modprobe ip_conntrack_ftp
/sbin/modprobe iptable_nat
/sbin/modprobe ip_nat_ftp

now all right i can list the content of my directory

I had found the sollution at this site :

http://www.e-infomax.com/ipmasq/

(the IPMasquerading site)

Have a good day