Re: FTP Problem
- From: Christopher Smith <csmith@xxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 19 Sep 2006 00:22:00 GMT
David M <NOSPAM@xxxxxxxxxx> wrote in
news:06mPg.11975$Qg.2582@xxxxxxxxxxxxxxxx:
On Mon, 18 Sep 2006 00:32:21 +0000, Christopher Smith rearranged some
electrons to form:
Allen Kistler <ackistler@xxxxxxxxx> wrote in news:EWkPg.2374$vJ2.2326
@newssvr12.news.prodigy.com:
Christopher Smith wrote:
Probably some combination of not allowing RELATED connections (in
/etc/sysconfig/iptables) and not loading ip_conntrack_ftp and/or
ip_nat_ftp (in /etc/sysconfig/iptables-config).
Make sure you have the passive mode ports enabled in your firewall.
I did it by limiting the port numbers to between 40000 and 40050, and
allowing those ports to be used on my router.
in /etc/vsftpd/vsftpd.conf
pasv_min_port=40000 (or whatever you like)
pasv_max_port=40050 (or whatever you like)
Did that originally, and have it now.
If I log in remotely to the ftp server (i.e., login from the public side
of the firewall), the pasv connection request to the server responds
correctly.
For example, I told vsftpd to use ports 1200-1203 for testing purposes.
If I'm at work, and I login, the ftp conection goes passive with the
response from the FTP Server as follows:
"Entering passive mode (X,X,X,X,4,177)."
where 4*256 + 177 = 1201, or the first passive port. The firewall is
open and it connects through just fine.
Anything else I can try?
.
- References:
- FTP Problem
- From: Christopher Smith
- Re: FTP Problem
- From: Allen Kistler
- Re: FTP Problem
- From: Christopher Smith
- FTP Problem
- Prev by Date: Re: Strange Network Problem
- Next by Date: Re: FTP Problem
- Previous by thread: Re: FTP Problem
- Next by thread: Re: FTP Problem
- Index(es):
Relevant Pages
|
