08-29-2002
Ftp'ing thru a Iptables NAT Masquerade
Greetings to all.
My new firewall is giving me one hell of a problem.
I'm running iptables and masquerading my intranet
thru NAT. But here is the problem. Whenever I try
to FTP to a server outside of my lan I get a 500
illegal port error.
I've come to the conclusion that NAT is using a port
too high for most servers out there. Does anyone
know where I can set a better range to work with?
Any recomendations on what range would be better?
I've only got a handful of machines behind it but they
are a web server and an SQL server so they might be
a little busy but not a huge drain on ports.
Thank You in Advance.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I have, say, a dozen files, and I want to grep for a string of text within them. I don't remember the exact syntax, but let me give it a shot and show you an idea here...
find . -type f -exec grep thisword {} \;
...and there's a way to put more than one grep into the statement, so it will tell... (1 Reply)
Discussion started by: kitykity
1 Replies
2. UNIX for Dummies Questions & Answers
Where Do I download Unix ISO's for free? I have searched this database for other related posts, but to no avail. All I need is this info, and I don't want Linux; just a Unix site. Please and thank you for your help. (3 Replies)
Discussion started by: killrazor
3 Replies
3. Shell Programming and Scripting
Hi,
I have written the following FTP script to get the multiple files from remote server to local server. My problem is that 'mget *' is not working in the script. I also tried with 'mget *.txt', 'mget *.*' etc. without any success. It do not copy any file to local server. In the script, Prompt... (10 Replies)
Discussion started by: berlin_germany
10 Replies
4. UNIX for Advanced & Expert Users
Hi,
I am having unix script that passes argument value to script. The script finds the file and keeps it in a directory.
I need to ftp this file to another server. Please guide me how to acieve this.
I am able to connect to ftp server but i am not able to use the unix argument in the ftp... (0 Replies)
Discussion started by: pyaranoid
0 Replies
5. Solaris
Hi gurus.
Not such a problem, more of a proof of concept.
Ive got two zones :- database-1 and database-dr-1 on two different servers. Both zones have different ip addresses.
I want to copy the whole zone database-1 over to database-dr-1, which is simple enough, but I want to install... (0 Replies)
Discussion started by: sbk1972
0 Replies
6. Shell Programming and Scripting
Hi,
I need to have a shell script that FTP's a zipped file from a particular location.
I have some path and inside that path i will have folders like x_timestamp and inside x_timestamp there may many folders based upon events like y_111,y_222,y_333.Inside each event there will be another... (3 Replies)
Discussion started by: weknowd
3 Replies
7. IP Networking
Hello!
I have the following problem with iptables in Debian 6:
My server works as a router and it needs to log server external IP+port for all outgoing connections.
But after command SNAT or MASQUERADE traffic is "lost".
I mean no following rules can catch those traffic.
Everything looks... (0 Replies)
Discussion started by: unlimited
0 Replies
8. IP Networking
edit: SOLVED - see below for solution
Hi there,
I've inherited a gob of Linux hosts and so am learning linux from the bottom of the deep end of the pool (gotta say I'm warming up to Linux though - it's not half bad)
Right now iptables is confusing me and I could use some pointers as to how... (0 Replies)
Discussion started by: Smiling Dragon
0 Replies
9. UNIX for Dummies Questions & Answers
Hi everyone,
I have a LAN with :
1 internet box (192.168.1.1)
1 Debian host (192.168.1.224)
3 Windows hosts (192.168.1.32/33/34)
The internet box is set to route all incoming traffic to the Debian host (DMZ).
Then the Debian host is set to accept certain packets and forward others... (0 Replies)
Discussion started by: chebarbudo
0 Replies
10. UNIX for Beginners Questions & Answers
My Device is connected to eth1 interface of the host and eth0 is connected to network.
Now when I am pinging google.com from device after executing below commands on host
sudo iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
sudo iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
I am... (0 Replies)
Discussion started by: slathigara
0 Replies
LEARN ABOUT DEBIAN
bubbros-server
bubbros-server(6) Games Manual bubbros-server(6)
NAME
bubbros-server - the bub-n-bros server.
SYNOPSIS
bubbros-server [ level-file.bin ] [options]
DESCRIPTION
bubbros-server starts an http server that acts as a control panel for the server. The server listens on port 8000 by default. The url for
the control panel is http://server:port/0xN where 0xN is a random hex number (acts as minimal protection). This url is printed when the
server starts. You can start and view games and kill the server from this panel. The control panel also allows you to type in the address
of a server to connect to, the script will then open a client to that server. The http server also servers java applet clients for those
players who wish to use one.
When a game is started the script opens a port for the game server. This port can then be connected to by a client. Clients autodetect
servers running on the local network with UDP ping on port 8056.
Connection forming
The client forms a tcp connection to the server. Or, when using the metaserver, the server forms a connection to the client. If this fails,
the client and server try a simultaneous SYN connect. This sometimes works if the server and client are behind firewalls. The server then
tries to transmit the data over udp. If it gets no response from the client it will fall back to the existing tcp connection.
OPTIONS
-b N, --begin N, --start N
Start at board (level) number N. The default is 1. See also the -s option.
-h, --help
Display help.
-i, --infinite
Restart the server at the end of the game. Normally the server quits after a certain period of inactivity. This is useful when used
with the -m option to make a public server that is available for a long time.
-l N, --lives N
Limit number of lives to N. If this option is not specified the number of lives will be infinite.
-m, --metaserver
Register server with the Metaserver (currently) at codespeak.net:8050. This makes your server visible to everybody, and also facil-
itates joining through a fascistic firewall.
--port TYPE=N Sets default listening ports. If type is LISTEN , sets the game server port to N. The game server port is chosen randomly by
default. If the type is HTTP , sets the http server port to N. The http server port defaults to 8000. Another port will be chosen
if none was specified and 8000 is already in use. The server also listens to UDP ping on port 8056.
-s N, --step N
Increase board number with N when a board is completed. Defaults to 1. see also the -b option.
OUTPUT
The server outputs helpful debug information concerning the http and game servers.
SEE ALSO
bubbros(6) bubbros-client(6)
December 7, 2007 bubbros-server(6)