"[FLSA-2005:2252] Updated iptables packages resolve security issues" introduces new bug
Marc Deslauriers
marcdeslauriers at videotron.ca
Sat Feb 19 13:56:48 UTC 2005
On Sat, 2005-02-19 at 12:46 +0100, Bart Westra wrote:
> Hi,
>
> After upgrading to iptables-1.2.8-8.90.1.legacy for Red Hat 9, I have found
> that ip_conntrack_ftp is not working on some interfaces of my system (it has
> 4 physical interfaces). It no longer recognizes the data sessions associated
> with an ftp control session. When I open the high ports in iptables, the
> data session will work.
With the new iptables package, you have to manually add
"ip_conntrack_ftp" to the IPTABLES_MODULES="" variable in
the /etc/sysconfig/iptables-config file and
uncomment the line.
Please try that and report back here if it worked so we can close the bug.
Thanks.
Marc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20050219/5112ebc8/attachment.sig>
More information about the fedora-legacy-list
mailing list