?
Solved

Serv-U - Linksys - XP Pro - folder access error...

Posted on 2006-05-01
28
Medium Priority
?
1,453 Views
Last Modified: 2013-11-29
Serv-U v6.2.0.1
XP Pro SP1
Windows Firewall enabled - FTP allowed (ext-21, int-21)
Linksys Wireless router (port forwarding on ports 20-21)
Serv-U set to port 21

I can log in, inside & out, but after a while (flashlight) the following message comes up:

An error occurred opening that folder on the FTP server.  Make sure you have permissions to access that folder.

Details:
Operation timed out

Now, when I try to hit the server from the outside and simultaneously look at the server (on the desktop PC) to see what the log says, it shows that I am logged in.  But, it never actually shows any folder - message above. I've also included the log data, from within Serv-U, below of what was recorded during one attempt.

DATA LOG (Serv-U)
[5] Mon 01May06 22:53:46 - (000036) Connected to 192.168.1.1 (Local address 192.168.1.120)
[6] Mon 01May06 22:53:46 - (000036) 220 Serv-U FTP Server v6.2 for WinSock ready...
[2] Mon 01May06 22:53:46 - (000036) USER anonymous
[6] Mon 01May06 22:53:46 - (000036) 331 User name okay, please send complete E-mail address as password.
[2] Mon 01May06 22:53:46 - (000036) PASS IEUser@
[6] Mon 01May06 22:53:46 - (000036) 530 Sorry, no ANONYMOUS access allowed.
[5] Mon 01May06 22:53:46 - (000036) Closing connection
[5] Mon 01May06 22:53:46 - (000037) Connected to 192.168.1.1 (Local address 192.168.1.120)
[6] Mon 01May06 22:53:46 - (000037) 220 Serv-U FTP Server v6.2 for WinSock ready...
[2] Mon 01May06 22:53:46 - (000037) USER anonymous
[6] Mon 01May06 22:53:46 - (000037) 331 User name okay, please send complete E-mail address as password.
[2] Mon 01May06 22:53:46 - (000037) PASS IEUser@
[6] Mon 01May06 22:53:46 - (000037) 530 Sorry, no ANONYMOUS access allowed.
[5] Mon 01May06 22:53:46 - (000037) Closing connection
[5] Mon 01May06 22:53:53 - (000038) Connected to 192.168.1.1 (Local address 192.168.1.120)
[6] Mon 01May06 22:53:53 - (000038) 220 Serv-U FTP Server v6.2 for WinSock ready...
[2] Mon 01May06 22:53:53 - (000038) USER resources
[6] Mon 01May06 22:53:53 - (000038) 331 User name okay, need password.
[2] Mon 01May06 22:53:53 - (000038) PASS xxxxx
[5] Mon 01May06 22:53:53 - (000038) User RESOURCES logged in
[6] Mon 01May06 22:53:53 - (000038) 230 User logged in, proceed.
[2] Mon 01May06 22:53:53 - (000038) opts utf8 on
[6] Mon 01May06 22:53:53 - (000038) 501 Invalid option.
[2] Mon 01May06 22:53:53 - (000038) syst
[6] Mon 01May06 22:53:53 - (000038) 215 UNIX Type: L8
[2] Mon 01May06 22:53:53 - (000038) site help
[6] Mon 01May06 22:53:53 - (000038) 501 SITE option not supported.
[2] Mon 01May06 22:53:53 - (000038) PWD
[6] Mon 01May06 22:53:53 - (000038) 257 "/" is current directory.
[5] Mon 01May06 22:53:53 - (000039) Connected to 192.168.1.1 (Local address 192.168.1.120)
[6] Mon 01May06 22:53:53 - (000039) 220 Serv-U FTP Server v6.2 for WinSock ready...
[2] Mon 01May06 22:53:53 - (000039) USER resources
[6] Mon 01May06 22:53:53 - (000039) 331 User name okay, need password.
[2] Mon 01May06 22:53:53 - (000039) PASS xxxxx
[5] Mon 01May06 22:53:53 - (000039) User RESOURCES logged in
[6] Mon 01May06 22:53:53 - (000039) 230 User logged in, proceed.
[2] Mon 01May06 22:53:53 - (000039) opts utf8 on
[6] Mon 01May06 22:53:53 - (000039) 501 Invalid option.
[2] Mon 01May06 22:53:53 - (000039) syst
[6] Mon 01May06 22:53:53 - (000039) 215 UNIX Type: L8
[2] Mon 01May06 22:53:53 - (000039) site help
[6] Mon 01May06 22:53:53 - (000039) 501 SITE option not supported.
[2] Mon 01May06 22:53:53 - (000039) PWD
[6] Mon 01May06 22:53:53 - (000039) 257 "/" is current directory.
[2] Mon 01May06 22:53:53 - (000039) TYPE A
[6] Mon 01May06 22:53:53 - (000039) 200 Type set to A.
[2] Mon 01May06 22:53:53 - (000039) PASV
[6] Mon 01May06 22:53:53 - (000039) 227 Entering Passive Mode (24,13,43,57,195,81)

Please help.  I've been battling with this for a week now.
0
Comment
Question by:onlinecad
  • 14
  • 12
26 Comments
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16583065
A couple of thoughts:
Serv-U actually uses some other ports as well. Best on the Windows Firewall to create an exception for the application rather than the ports. Under Windows Firewall/Exceptions/ choose add program, instead of add port.

Also on the Advanced page of Serv-U configuration page you will see the Passive ports used by Serv-U; "PASV Port Range" That port range needs to be forwarded on the router as well as 21. For security reasons often best to change the default external ports, but get it working first.

0
 

Author Comment

by:onlinecad
ID: 16585638
Robwill,

I went ahead and added Serv-U to the Windows firewall and made it "accessable" (ports 50000 -> 50004).
I also included Serv-U to be forwarded in the router (ports 50000 -> 50004).

Same result - same message as above.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16585936
Sorry onlinecad, looking at this again, I think I was "barking up the wrong tree". It was late last night. Just checked another system and if using the default ports, you should only need port 21. If you enable SLS/TLS sessions you may have to add others, but not for the default configuration.
As for the firewall adding the application is probably a better alternative, in case you ever make configuration changes, but regardless I don't think it is your problem.
You are connecting without a UserName and password, in other words using the Anonymous account. Looking at the log file I would say it is a permissions issue.  Check in the Serv-U configuration under Users and see if the Anonymous account is enabled (un-check disable account). On the same page verify there is a home directory for this user, or add one, and probably should put a test file in the folder. If still having problems try changing the Windows security permissions to allow the everyone group to read and execute for the folder.
See if you have any more luck.
0
Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

 
LVL 78

Expert Comment

by:Rob Williams
ID: 16586798
onlinecad, Got it now. I have a demo machine here with Serv-U on it but no firewall, so I decided add and play with it. Serv-U Anonymous permissions need to be as suggested above but:
1) Only port 21 (assuming using defaults), on the router, needs to be forwarded to the Serv-U computer
2) On the Windows firewall you can remove the port exceptions you enabled earlier, and then choose add a program and browse to
C:\Program Files\<install folder>\Serv-U\ServUDaemon.exe

I was able to duplicate you error and only that solution worked for me. You can see detailed explanation at:
http://rhinosoft.com/Knowledgebase/KBArticle.asp?RefNo=1384&prod=su
0
 

Author Comment

by:onlinecad
ID: 16586889
Hey Robwill,

I added the "Anonymous" user back into Serv-U  but I can not find the option to "enable" the account.  From what I see, just adding it enables it.  Now, when I try the site, the login window no longer appears  - just the same error message.

Regarding the port issues, what did you mean by ONLY needing port 21?  Also, SSL/TLS is not enabled.

I probably should have mentioned this from the start.  If you haven't already noticed, I'm new to FTP and my experience with networking is limited to my home office.  Given that, any step by step direction you can offer will be grreatly appreciated.
0
 

Author Comment

by:onlinecad
ID: 16586959
Hey Robwill,

I followed the link you sent and I noticed that the Windows Firewall dialog box is different from what I show.  That is because I'm still running SP1 not SP2.  The options I have does not offer "Exceptions" only a "Services" tab where you can enable or allow through the firewall.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16587586
Mmmmm SP1, that makes life more interesting. I did notice you posted that above but assumed when you were talking about the firewall that you actually had SP2 as not too many people used the SP1 version. Three options I can suggest
1) Install Service pack 2 and configure as suggested earlier. You really should update to SP2 there area lot of new security features added and the bugs have been ironed out for a long time. You can go to the windows Update site or download from:
http://www.microsoft.com/downloads/details.aspx?FamilyId=049C9DBE-3B8E-4F30-8245-9E368D3CDB5A&displaylang=en
2) Disable the Windows SP1 Firewall. There is very little concern where you are behind the Linksys firewall. Can be quite risky if you connect the PC directly to the Modem. To do so go to Control Panel | Network Connections | right click on your adapter choose properties | Advanced | uncheck the box under Internet connection firewall
3) I have not tried this but if you want to stay with SP1 it should work. As discussed before you can enable Passive FTP connections. To do so browse to the Serv-U window in the following link:
http://www.ccsoftware.ca/ftpservu/support/Advanced.htm
In the passive port range you can change the range. Keep it a high number but limit it to 3-5 ports such as they show 13500-13505. The reason being is you will have to add these ports to your firewall and you cannot do port ranges so you will have to add a 'rule' for each port 13500, 13501,.......13505
I haven't tried this but it may work. To connect to the FTP site you will need to Open Internet Explorer, and go to Tools | Internet Options | Advanced | Browsing | Use Passive FTP (verify enabled)
0
 

Author Comment

by:onlinecad
ID: 16588710
I've updated my system to XP Pro SP2.  I'm still having the same results (same message.) Below is a snapshot of my current settings along with the latest log information.  Let me know what you think.

XP Firewall Setting:
Serv-U program exception added.

Serv-U Settings:
Local Server -> Settings -> PASV port range 50000 to 500004
FTP Domain-> Domain ->
            -> Domain set to IP 192.168.1.20
            -> Port set to 21
FTP Site -> Settings -> "Allow passive mode..." enabled -> 24.13.43.57

FTP Site -> Users ->
            -> Anonymous - no password
            -> Heatlink - password required

Linksys Server (BEFW11S4):
Port Forwarding ->
      FTP -> 21 (start) to 21 (end) -> TCP -> 192.168.1.20 -> enabled checked.

Latest log info:
[5] Tue 02May06 12:44:36 - (000007) Connected to 192.168.1.1 (Local address 192.168.1.20)
[5] Tue 02May06 12:44:36 - (000007) ANONYMOUS logged in, password: IEUSER@
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16589700
onlinecad, looks good, but you still cannot connect? The program exception you added; there are several applications that show up when you go to add the exception. A couple show up in the initial add a program Window, but the one you need, ServUDaemon.exe, you will have to click "browse", and locate in the "C:\Program Files" folder. Did you do that?
If so, as a test, try disabling the firewall all together. [ Control Panel | Windows Firewall | Off ]  This will at least determine if the firewall or something else is the problem.
0
 

Author Comment

by:onlinecad
ID: 16589983
RobWill,

Yes, ServUDaemon.exe is the program I added to the firewall exception list.  The other programs set by default are File & Print Sharing, Remote Assistance & Setup/Uninstall.

Anyway, I turned it off and got a new message:

An error occurred opening that folder on the FTP server.  Make sure you have permissions to access that folder.

Details:
A connection with the server could not be established.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16590144
Not having much success here are we. <G>
Sounds like a different error. Work with the Anonymous account for now. In Serv-U go to; Domains | <your domain> | Users | Anonymous | Dir Access (right hand window tab) |highlight the folder | make sure at least Read and List are enabled, on the right.
0
 

Author Comment

by:onlinecad
ID: 16590358
Hey RobWill,

The settings you mentioned for Anonymous we already set.

Are their any settings that need to be set on the folders themselves?  Sharing or something?

Another thing I failed to mention is that this computer also has Win2000 installed on it.  The two aren't running at the same time.  I choose which one to run at startup.  Could something on the Win2000 side be guming up the works even though it isn't running?
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16590524
>>"Are their any settings that need to be set on the folders themselves?  Sharing or something?"
I would thing that you have to enable security permissions for everyone, however oddly enough I tried removing all permissions and for some reason it worked. That has me baffled. However, wouldn't hurt to try;
Right click on the folder listed under the anonymous user and choose "Sharing and Security", then the "Security" tab. If Everyone exists, click on it and verify they have at least "read & Execute", and "List Folder Contents". If they do great.
If they do not or the Everyone account is not in the list click on Advanced, then uncheck "inherit from Parent...", a box will pop up, choose "copy", then OK. Then in the list of users, click add, then enter everyone, click check names and it should underline it, and click OK. Now click on the everyone account and check "read & Execute", and "List Folder Contents" then click apply. Now click on advanced again and check "replace entries on all child objects..." then apply and OK, OK

As for Win2000, I assume dual boot? If so that is no problem.
0
 

Author Comment

by:onlinecad
ID: 16590664
Now I'm confused.  When I right click on the folder and select Sharing & Security, the Properities dialog box comes up which does NOT have a Securtiy tab, only a Sharing tab.  This box does have a section "Network sharing and security", but doesn't offer the settings you mentioned above.  Only has a check box that says "Share this folder on the network".   Also another that says "Allow user to change my files".
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16590780
Sorry. You mentioned you have XP pro. Great but if home option is not available. To enable on XPpro;
open any folder, on the menu bar select  Tools | Folder Options | View | un-check last item "use simple file sharing"
0
 

Author Comment

by:onlinecad
ID: 16647818
Robwill,

Sorry that I haven't replied.  I had to put this issue on the side for the moment.  I tried the above with the same results.  I'm almost tempted to wipe the slate clean and start over.  Let me know if you have any other suggestions.
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16647960
onlinecad, " a clean slate" always makes life easier. <G> However, if you uninstall it may ask if you wish to remove configuration settings. If so make sure you choose yes as I believe it makes registry entries and re-uses those on re-installation. If the option is not available it may not help to re-install, you may get similar results. If you do, try re-do changing the default directories. It may force at least permission changes. Also allow anonymous access. You can change or add to that later once working. Let me know when you get time to get back to it.
--Rob
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16756978
onlinecad, did you ever do a clean install and have any better luck?
--Rob
0
 

Author Comment

by:onlinecad
ID: 16759695
Hey RobWill,

I've been out of town and am hoping to get this resolved later this week.  I'll let you know my status.  thanks for asking.

Onlinecad

By the way,  any suggestions about doing a re-install of XP on a machine that is already running both Windows 2000 pro & XP.  FYI - I do not have the install CD for Windows 2000.  I inherited this computer and am trying to utilize it for this FTP site.

Onlinecad
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16760094
A clean install or a repair install? Both are usually straight forward, but if you have a dual boot system be careful, it's easy to over-right the wrong one, and easy to kill the dual boot feature. MS recommends you install the older O/S first so you have that in your favor since you are doing the XP. If doing the repair install have a look at the following, but as I say, careful of the partition you choose:
http://www.michaelstevenstech.com/XPrepairinstall.htm
0
 

Author Comment

by:onlinecad
ID: 16763347
Well, the result I'm hoping for is to completely remove Windows 2000 and have a clean install of XP.  XP Pro being the only OS on the box.  Then I will go ahead and setup the FTP again.  Can I unistall Windows 2000 without the software CD?  Again, this is a box I inherited and I have no idea of what it's been through, if you know wht I mean.

onlinecad
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16763526
You don't need the CD to uninstall. Is it a dual boot machine, i.e can you boot to Windows 2000 or XP and they are on different partitions?
Also, are you trying to save data or can you completely wipe the machine?
0
 

Author Comment

by:onlinecad
ID: 16763607
Yes it is a dual boot.  On startup, I'm prompted to choose what OS to start.  I would like a clean wipe, but the one thing I don't have are the hardware drivers.  I guess I can first remove Window 2000, then I can re-install XP over the current installation.  Any recommendations?  What's the best way to remove Windows 2000?

onlinecad
0
 
LVL 78

Expert Comment

by:Rob Williams
ID: 16763894
If you want a clean install, which means it will wipe EVERYTHING on the computer, best bet is to boot from the XP CD, and when asked, select a new installation. Shortly thereafter you will be prompted as to which partition to install it on, at that point highlight a partition and delete it, repeat until they have all been deleted, then choose create a new partition, you can specify a size or use the whole drive, then select that partition for the O/S and choose to format it. I would recommend NTFS format. That will start your installation and wipe EVERYTHING, including data.
0
 

Author Comment

by:onlinecad
ID: 16763981
sounds simple enough.  will the hardware drivers install automatically or will I have to install them again manually?

onlinecad
0
 
LVL 78

Accepted Solution

by:
Rob Williams earned 1000 total points
ID: 16764388
With XP, most hardware drivers will be found. You might want to download a copy of copy of Everest which helps to identify components and will often provide links for drivers. They have a free demo version:
http://www.lavalys.com/products/download.php?pid=3&lang=en
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
This article will show you step-by-step instructions to build your own NTP CentOS server.  The network diagram shows the best practice to setup the NTP server farm for redundancy.  This article also serves as your NTP server documentation.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question