Permissions with my FTP...

Posted on 2004-04-03
Last Modified: 2012-05-04
Hi, i'm back

i've set up an ftp server on my mandrake 10.
Now i've forwarded port 21 on my router.
If I type my internal IP , everything works fine...
If I type my external IP, it's not alright.

He gives the following error:
"An error accurred reading the contents of the folder. Make sure the file name is vlid and you have permission to access the location specified.
Details: A connection with the server could nog be established"

How can i get external on my ftp, (my port 21 is forwarded)
Question by:koenvdl
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
LVL 44

Accepted Solution

Karl Heinz Kremer earned 250 total points
ID: 10747554
Make sure that you use passive ftp on your client.

How are you testing your external IP address? If you do this from within your private network, it may not work (this depends on how your router handles this). You need to test this from a computer that is external to your private network.
LVL 40

Expert Comment

ID: 10747707
For a passive FTP connection, which is the only thing that makes sense for clients accessing your FTP server from the Internet, you need port 21 accepting inbound connections and forwarded to your server and ephemeral ports (>1024) allowed and forwarded. Since forwarding all of the ephemeral ports will pretty much eliminate Internet access for other clients in the LAN you need to be using an FTP server that allows a limited range of ephermeral ports to be configured, for example ProFTP.

For a good explanation of what happens in an FTP session see

Author Comment

ID: 10747852
I've configured vsFTP on my mandrake workstation...

at my selfmade router pc,
when I typ: , i'll see my pub...
when I typ: , he sais that error.

My port is at my Win2000 SP4 self made router forwarded with the windows services...
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

LVL 44

Expert Comment

by:Karl Heinz Kremer
ID: 10747860
I just tried to connect to the IP address you specified, and entered ftp/ftp as user id /password and then got the error message that the password was not correct. Besides the slow speed, it looks like I'm able to connect to your ftp server.
LVL 40

Expert Comment

ID: 10747994
Connecting is one thing and actually doing something is another. With only port 21/TCP allowed and forwarded to the FTP server you can login and do any operation that doesn't require a data transfer, like "ls", "dir", "get", "put", etc. For a data transfer to occur the PASSIVE client must be able to open a connection to the FTP server using an ephemeral port.

Author Comment

ID: 10758372
@khremer: That wasn't my was just an IP in my mind :)
@jlevie: yes , but i can't do a data transfer,when i can't connect external...
and internal the datatransfer work perfectly.
LVL 44

Expert Comment

by:Karl Heinz Kremer
ID: 10758422
Have you tried to connect from a machine that is not on your subnet?
LVL 40

Assisted Solution

jlevie earned 250 total points
ID: 10759071
> @jlevie: yes , but i can't do a data transfer,when i can't connect external...

Right and that would be because your firewall isn't allowing external clients to connect on an ephemeral (>1024) port. Opening and forwarding all of the empheral ports (1024-65535) would make inbound FTP work, but it will break all other Internet access. If your FTP server can be configured to listen on a subset of the ephemeral ports, say 50000-65535, (ProFTP allows this) you can open & forward that range to the FTP server.

Featured Post

NFR key for Veeam Backup for Microsoft Office 365

Veeam is happy to provide a free NFR license (for 1 year, up to 10 users). This license allows for the non‑production use of Veeam Backup for Microsoft Office 365 in your home lab without any feature limitations.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question