Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Proftpd question - passive ftp

Posted on 2004-04-27
1
Medium Priority
?
896 Views
Last Modified: 2012-06-21
My server is now using proftpd and i want my ftp server to suport both active and passive ftp mode.
I have add the directive (PassivePorts 51000 60000
) and open inbound ports 51000-60000 at the firewall.

When i try to use WS_FTP LE to connect my ftp server, i got the following error

331 Password required for user.
PASS (hidden)
230 User vip logged in.
PWD
257 "/" is current directory.
SYST
215 UNIX Type: L8
Host type (S): UNIX (standard)
PASV
227 Entering Passive Mode (203,191,246,61,156,86).
connecting to 203.191.246.61:40022
- -
connecting to 203.191.246.61:40022
! Connection failed 202.181.246.61 - connection refused
! connect: error 0
PORT 203,211,39,22,5,4
200 PORT command successful
LIST
! Receive error: Blocking call cancelled

PS. I am using port 8021 instead of port 21 for the ftp service
0
Comment
Question by:tyknight
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 40

Accepted Solution

by:
jlevie earned 100 total points
ID: 10935176
The problem here is that the WS_FTP LE client tried to use an ephemeral port outside of the range that your FTP server and firewall are configured for as shown in "connecting to 203.191.246.61:40022". The client tried to open the connection on 40022.

Since the RFC behavior of the server in PASV mode is to open an ephemeral port and send that port number to the client so that it can open a connection to the server using that port it sounds to me like your ProFTP configuration isn't doing what you think it is in limiting the ephemeral port range. I'd suggest reviewing your ProFTP configuration and trying the server in debug mode to see what's happening with (proftpd -n -d 5). The debug level can be adjusted, see 'man proftpd'.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction We as admins face situation where we need to redirect websites to another. This may be required as a part of an upgrade keeping the old URL but website should be served from new URL. This document would brief you on different ways ca…
SSH (Secure Shell) - Tips and Tricks As you all know SSH(Secure Shell) is a network protocol, which we use to access/transfer files securely between two networked devices. SSH was actually designed as a replacement for insecure protocols that sen…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question