I would like to know if it’s possible to mangle FTP traffic so that I can send FTP traffic to a certain destination over a specific interface. Because FTP uses random port I cannot find a sample to do this. Please help.
If your using connection-tracking, and you have the FTP helper, you should be able to mark connections, mark packets, and then mark routing based on the ftp connection.
Sam
Thank you for your prompt reply.
-
As far as I know connection tracking is enabled by default. Is this correct?
-
Does the FTP helper ship with 2.9 and 3.x?
-
Do you mark the connection based on ‘FTP helper’ packets?
kind regards,
Eugene
Once you conn-mark the first packet, you can do packet-mark (base on the conn-mark) for FTP traffic.
FTP helper is available on both 2.9 and 3.0, it should work fine to determine FTP traffic going trough the router.
ftp helper enabled; mark routing by connection type=ftp seems to work for us…