Permissions with my FTP...

Posted on 2004-04-03
Last Modified: 2012-05-04
Hi, i'm back

i've set up an ftp server on my mandrake 10.
Now i've forwarded port 21 on my router.
If I type my internal IP , everything works fine...
If I type my external IP, it's not alright.

He gives the following error:
"An error accurred reading the contents of the folder. Make sure the file name is vlid and you have permission to access the location specified.
Details: A connection with the server could nog be established"

How can i get external on my ftp, (my port 21 is forwarded)
Question by:koenvdl
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
LVL 44

Accepted Solution

Karl Heinz Kremer earned 250 total points
ID: 10747554
Make sure that you use passive ftp on your client.

How are you testing your external IP address? If you do this from within your private network, it may not work (this depends on how your router handles this). You need to test this from a computer that is external to your private network.
LVL 40

Expert Comment

ID: 10747707
For a passive FTP connection, which is the only thing that makes sense for clients accessing your FTP server from the Internet, you need port 21 accepting inbound connections and forwarded to your server and ephemeral ports (>1024) allowed and forwarded. Since forwarding all of the ephemeral ports will pretty much eliminate Internet access for other clients in the LAN you need to be using an FTP server that allows a limited range of ephermeral ports to be configured, for example ProFTP.

For a good explanation of what happens in an FTP session see

Author Comment

ID: 10747852
I've configured vsFTP on my mandrake workstation...

at my selfmade router pc,
when I typ: , i'll see my pub...
when I typ: , he sais that error.

My port is at my Win2000 SP4 self made router forwarded with the windows services...
Portable, direct connect server access

The ATEN CV211 connects a laptop directly to any server allowing you instant access to perform data maintenance and local operations, for quick troubleshooting, updating, service and repair.

LVL 44

Expert Comment

by:Karl Heinz Kremer
ID: 10747860
I just tried to connect to the IP address you specified, and entered ftp/ftp as user id /password and then got the error message that the password was not correct. Besides the slow speed, it looks like I'm able to connect to your ftp server.
LVL 40

Expert Comment

ID: 10747994
Connecting is one thing and actually doing something is another. With only port 21/TCP allowed and forwarded to the FTP server you can login and do any operation that doesn't require a data transfer, like "ls", "dir", "get", "put", etc. For a data transfer to occur the PASSIVE client must be able to open a connection to the FTP server using an ephemeral port.

Author Comment

ID: 10758372
@khremer: That wasn't my was just an IP in my mind :)
@jlevie: yes , but i can't do a data transfer,when i can't connect external...
and internal the datatransfer work perfectly.
LVL 44

Expert Comment

by:Karl Heinz Kremer
ID: 10758422
Have you tried to connect from a machine that is not on your subnet?
LVL 40

Assisted Solution

jlevie earned 250 total points
ID: 10759071
> @jlevie: yes , but i can't do a data transfer,when i can't connect external...

Right and that would be because your firewall isn't allowing external clients to connect on an ephemeral (>1024) port. Opening and forwarding all of the empheral ports (1024-65535) would make inbound FTP work, but it will break all other Internet access. If your FTP server can be configured to listen on a subset of the ephemeral ports, say 50000-65535, (ProFTP allows this) you can open & forward that range to the FTP server.

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
This is a high-level webinar that covers the history of enterprise open source database use. It addresses both the advantages companies see in using open source database technologies, as well as the fears and reservations they might have. In this…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question