[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 3172
  • Last Modified:

Cannot connect to ProFtpd in Passive Mode

I am using CoreFTP lite to connect to my FTP server in passive mode and I get something like (I am not behind a firewall):

Connect socket #660 to 66.117.23.50, port 21...
220 ProFTPD 1.2.10 Server (ProFTPD) [66.117.23.50]  
USER ftpuser
331 Password required for ftpuser.  
PASS **********  
230 User ftpuser logged in.  
SYST  
215 UNIX Type: L8  
Keep alive off...
PWD  
257 "/" is current directory.  
PASV  
227 Entering Passive Mode (66,117,23,50,238,146).  
LIST  
Connect socket #652 to 66.117.23.50, port 61074...
timeout
QUIT  

(P.S. Real IP is not being used)

However unchecking passive mode in FTP client allows FTP connections *AND* passive mode connections over SFTP (port 22) do work !

Issue is: I need to enable passive connections over plain FTP (port 21), because I am using a backup script that only works in passive mode.
0
agubaira
Asked:
agubaira
  • 2
1 Solution
 
agubairaAuthor Commented:
Passive ports in proftpd are defined like this:

# Port 21 is the standard FTP port.
Port                            21
PassivePorts                    60000 65000
0
 
ravenplCommented:
> *AND* passive mode connections over SFTP (port 22) do work !
there's no such thing - really! Even if passv command works - does nothing!
http://slacksite.com/other/ftp.html Here You have explanation how passive works, and what needs to be done on server's side firewall.
You propably have closed (on firewall from server side) all ports above 1024 (or only some are open). You need to open ports beeing used by proftpd as passive listening ports. As agubaira said - You don't have to allow every port >1024 as You can define some range for use by ftpd.
0
 
agubairaAuthor Commented:
Thanks for your help ! It was Plesk's firewall blocking those ports.

Antonio
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now