[Bug 109580] file uploads over network address translation did not work
René Drießel
debian at driessel.de
Tue Apr 24 11:25:00 UTC 2007
Public bug reported:
Binary package hint: linux-image-2.6.15-23-server
Hello,
we have here a dapper box, which is used as a firewall between our local
network (LAN) and the DMZ/Internet. We have the problems with large file
uploads from the lan over ftp or scp. The next points summerizes the
problem:
- We use SNAT because of the static IP
- Downloads with ftp and scp work
- Uploads (lan -> internet):
- the ftp transfer is interupted after ca. 500kb (we use passive mode)
- the scp transfer is interupted after ca. 30 or 40MB
We use the following skript to start the rules from /etc/rc.local
# switch everything of
echo "0" > /proc/sys/net/ipv4/ip_forward
iptables --table filter --flush
iptables --table filter --delete-chain
iptables --table nat --flush
iptables --table nat --delete-chain
iptables --table mangle --flush
iptables --table mangle --delete-chain
modprobe -r iptable_nat iptable_filter
# now start iptables
modprobe iptable_nat
iptables --table nat --append POSTROUTING --out-interface eth1 --jump SNAT --to-source 80.88.19.66
echo "1" > /proc/sys/net/ipv4/ip_forward
The used kernel and iptables versions:
uname -a
Linux io 2.6.15-28-server #1 SMP Tue Mar 13 21:09:03 UTC 2007 i686 GNU/Linux
iptables --version
iptables v1.3.3
With an old kernel from breezy (2.6.8.1-6-686) the same configuration
worked perfectly. :-(
any help would be nice.
** Affects: linux-source-2.6.15 (Ubuntu)
Importance: Undecided
Status: Unconfirmed
--
file uploads over network address translation did not work
https://bugs.launchpad.net/bugs/109580
You received this bug notification because you are a member of Kernel
Bugs, which is a bug contact for linux-source-2.6.15 in ubuntu.
More information about the kernel-bugs
mailing list