Conversion from ipchains --> netfilter question

[Henri J. Schlereth]

Hi,

Put me down as a semi-newbie and I am already searching thru the
archives. I recently converted a firewall from RH7 to RH7.1.
Previously, I had been using ipchains w/ ip_masq.ftp.

The default is to continue using ipchains and I was happy with
that while I tested / learned iptables on an internal machine.
Three programs stopped working properly because ip_masq_ftp
is gone. Of the three I merely converted wget and lynx to
passive mode and kept going. The links text browser however,
doesnt do passive mode. To quote the author:

"It would be best to rewrite the whole FTP. It sends out multiple
commands, RFC doesnt allow that, and some servers do not support
it." I am not sure what that means but the upshot is that
links dont do passive ftp.

So I am trying to figure out how to do this under iptables/netfilter.
I have a slighlty modified version of the rc.firewall up and
running on the firewall, and everything else is working so far.

Searching for a clue, a vowel or a noun. 

TIA

Henri

-- 
"Successful politics consists of allowing everyone to share your enemies."
--The Cynic's Book of Wisdom