b_loco
asked on
FTP LIST command returns 425 error: "Unable to build data connection: Network is unreachable"
Hi!
My hosting provider does not allow Passive FTP, and I've been connecting using Active/Port well.
However, the last times I tried to connect to the server, it connects successfully, but whenever there is a LIST command, the server returns error 425 "Unable to build data connection: Network is unreachable"
I've tried disabling the firewall but the results were the same.
I contacted my provider and was told that nothing had changed in the server and that they, with an outside connection, were able to connect successfully.
I've tried using the browser, command-line FTP and several FTP clients without success.
I googled for this and found someone saying to turn on passive mode, but my server doesn't allow it.
What can I do?
My hosting provider does not allow Passive FTP, and I've been connecting using Active/Port well.
However, the last times I tried to connect to the server, it connects successfully, but whenever there is a LIST command, the server returns error 425 "Unable to build data connection: Network is unreachable"
I've tried disabling the firewall but the results were the same.
I contacted my provider and was told that nothing had changed in the server and that they, with an outside connection, were able to connect successfully.
I've tried using the browser, command-line FTP and several FTP clients without success.
I googled for this and found someone saying to turn on passive mode, but my server doesn't allow it.
What can I do?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
What is your IP address?
Are you using a private addressing scheme?
Once we know this then we can diagnose the problem furthur.
Are you using a private addressing scheme?
Once we know this then we can diagnose the problem furthur.
ASKER
I'm not an expert in networking so I don't really follow your question...
I've got my local network address 192.168.something.somethin
And I've got an "outside" address 62.48.something.something;
The router handles local IP address distribution
I've got my local network address 192.168.something.somethin
And I've got an "outside" address 62.48.something.something;
The router handles local IP address distribution
OK so if your router is not converting the ftp command as it passes through then it will be the cause of the problem.
What router do you have?
What router do you have?
ASKER
Zixel prestige 600
That make of router is quite good so it should work.
Can you turn on diagnostics on the ftp server so you can see all the commands and responses coming in. That would help greatly.
Can you turn on diagnostics on the ftp server so you can see all the commands and responses coming in. That would help greatly.
ASKER
Connecting to www.mydomain.com on port 21. Attempt 1 of 3...
220 ProFTPD FTP Server ready.
USER myusername
331 Password required for myusername
PASS *********
230 User myusername logged in.
Server Type: UNIX (standard)
PWD
257 "/home/myusername" is current directory.
TYPE A
200 Type set to A.
PORT 192,168,0,5,6,254
200 PORT command successfull
LIST
425 Unable to build data connection: Network is unreachable
Unable to open data socket
CWD /home/myusername/mainwebsi
250 CWD command successfull
PWD
257 "var/www/html" is current directory
PORT 192,168,0,5,6,255
200 PORT command successfull
LIST
425 Unable to build data connection: Network is unreachable
Unable to open data socket
... and so on
sorry about my late reply
220 ProFTPD FTP Server ready.
USER myusername
331 Password required for myusername
PASS *********
230 User myusername logged in.
Server Type: UNIX (standard)
PWD
257 "/home/myusername" is current directory.
TYPE A
200 Type set to A.
PORT 192,168,0,5,6,254
200 PORT command successfull
LIST
425 Unable to build data connection: Network is unreachable
Unable to open data socket
CWD /home/myusername/mainwebsi
250 CWD command successfull
PWD
257 "var/www/html" is current directory
PORT 192,168,0,5,6,255
200 PORT command successfull
LIST
425 Unable to build data connection: Network is unreachable
Unable to open data socket
... and so on
sorry about my late reply
ASKER
Increased points
> PORT 192,168,0,5,6,254
This is the problem. The server is being told to connect back to 192.168.0.5 port 1790 (6*256+254) which is not a valid internet address.
Your Zixel router is not handling the ftp connections inteligently. Can you check the settings in the web interface for anything related to ftp.
This is the problem. The server is being told to connect back to 192.168.0.5 port 1790 (6*256+254) which is not a valid internet address.
Your Zixel router is not handling the ftp connections inteligently. Can you check the settings in the web interface for anything related to ftp.
ASKER
I'm sorry, I misunderstood your request.
What I posted was the log at the client
I'll try to get the server log
What I posted was the log at the client
I'll try to get the server log
ASKER
Mon Aug 9 23:21:08 2004 0 81.193.###.### 0 /var/www/html/y/index.html
Mon Aug 9 23:21:08 2004 0 81.193.###.### 0 /var/www/html/y/level100_a
Mon Aug 9 23:21:16 2004 0 81.193.###.### 835 /var/www/html/y/index.html
Mon Aug 9 23:21:23 2004 2 81.193.###.### 27903 /var/www/html/y/level100.s
My provider gave me this logs, but I am not sure if they refer to my attempts. However, if they do, my ipaddress is "normal" and it resembles the one I have today (only last field changes)
Now I upload my files through a very user-unfriendly web interface and don't know if this refers to that activity (don't really know how to read them)
Mon Aug 9 23:21:08 2004 0 81.193.###.### 0 /var/www/html/y/level100_a
Mon Aug 9 23:21:16 2004 0 81.193.###.### 835 /var/www/html/y/index.html
Mon Aug 9 23:21:23 2004 2 81.193.###.### 27903 /var/www/html/y/level100.s
My provider gave me this logs, but I am not sure if they refer to my attempts. However, if they do, my ipaddress is "normal" and it resembles the one I have today (only last field changes)
Now I upload my files through a very user-unfriendly web interface and don't know if this refers to that activity (don't really know how to read them)
Those logs are not really detailed enough as they only list the files transferred and the IP address which made the request. Full logging (often called debug logging) needs to be turned on so you can see every command and response given for all connections.
The author did not respond with the additional logs requested so I could not diagnose furthur. I recomend delete/no refund.
ASKER
Can my ISP be causing that kind of behavior at another connection point?
My provider told me that with their ISP connection (not the same as the server) they were able to work nicely.