search for: pasv

...have a cisco sdsl modem to connect to internet via eth1 (192.168.1.2) local is eth0 (192.168.2.254) default gw is 192.168.1.1 the cisco forwards all incoming ports to 192.168.1.2. I connect from outside on port 24562, login is successfull, the ftpserver gives back the external Ip of the cisco as pasv IP to the client (its a setting in the ftpserver). It gives an ip from the pasv range I defined in the ftpserver out of the pool 3000:4000 However the client gets a socket error when trying to connect to one of the pasv ports. I configured the ftp nat and connection tracking modules with 21,24562...

Hi, ok Im all new to this :-) for pasv ftp in your example you say for example to use ports 65500-65535, but i dont see that u open those ports in your example fw scripts..? any hints ? -- Christophe Zwecker mail: doc@zwecker.de Hamburg, Germany fon: +49 179 3994867 http://www.zwecker.de &...

...ace ftp client). I would appreciate if someone could guide me, possibly with a solution for this problem. Many thanks Rajeev 150 Opening BINARY mode data connection for 4393 MP001.dwg (15434547 bytes). 226 File send OK. Transferred 15,434,547 bytes in 20.02 seconds (753.04 KB/s) PASV 227 Entering Passive Mode (86,98,38,95,118,208) RETR 4393 MP002.dwg 150 Opening BINARY mode data connection for 4393 MP002.dwg (9642920 bytes). 226 File send OK. Transferred 9,642,920 bytes in 11.64 seconds (809.01 KB/s) PASV 227 Entering Passive Mode (86,98,38,95,91,22) RETR 4393 SC001.dwg...

I''v don all the work that was shown on the installation documentaion but It still can''t send PASV comands and ares up the is their somthing i''m missing from the Rules. ### # Shorewall version 1.3 - Rules File # # /etc/shorewall/rules REJECT:info loc net tcp 6667,137,138,139 REJECT:info loc net udp 137,138,139 #REDIRECT loc 80...

I am trying to get the AllowFTP action to work for Net > DMZ traffic and FTP pasv. I know it is kind of working, as the user can log in, however, it fails at the port. I have had to open up some high ports for pasv to work. Now I know this aint cool, so does anyone know what a person has to do to get the AllowFTP action to work the same way it does if I was just ftp to the firew...

Greetings, Beginning today, I started to receive the following when ftp'ing to my CentOS 6 machine: ncftp /home/pyz2 > dir connect failed: No route to host. connect failed: No route to host. connect failed: No route to host. Falling back to PORT instead of PASV mode. I can make a connection, but I can't get a directory listing or transfer data/files. I'm flummoxed. What I had been doing is adding more directives to my /etc/hosts.deny file, today to include certain categories of ip addresses for the vsftpd service. I unwound that after I saw...

...I do this by making a tarball of relevant files then transferring it over the local subnet to my station (Fedora 11), whereupon I burn it to DVD. There is no optical burner on the server. The tarball amounts to a bit under 5 gigs. Recently I've started getting an error telling me to try PASV or PORT first. I use the gFTP client on my machine and as far as I know there is no option in this program to use either option either locally or remotely (on the server.) Any ideas on this one? Dave -- When addiction becomes commonplace in a society, people become addicted not only to...

...on my main server. It runs proftpd and is not NATted.. When I did the install I said to allow FTP and HTTP. I can ftp from windows dos ftp client. In IE I get "Unable to build data connection: No route to host" ncftp I get.. Data connection timed out. Falling back to PORT instead of PASV mode. List failed. Wget and FireFox just time out. Anything I need to add to the firewall rules? This is all it has related to FTP. -A RH-Firewall-1-INPUT -p tcp -m state -m tcp --dport 21 --state NEW -j ACCEPT

HI, I am facing problem in connecting ftp from the windows client. CENTOS5U1 Running vsftp daemon. From linux client i am able to upload and download. When i do an ftp upload of any files or folders from windows command line i am getting below error . *vsftp 553 Could not create file* *NOTE: SELINUX IS DISABLED AND THERE IS NO FIREWALL RUNNING* See my user permission and ownership details

...sful. Command: FEAT Response: 211-Features: Response: MDTM Response: REST STREAM Response: SIZE Response: 211 End Status: Connected Status: Retrieving directory listing... Command: PWD Response: 257 "/" Command: PORT 172,17,2,12,16,230 Response: 200 PORT command successful. Consider using PASV. Command: TYPE A Response: 200 Switching to ASCII mode. Command: LIST Error: Timeout detected! Error: Could not retrieve directory listing -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.centos.org/pipermail/centos/attachments/20041122/641da9a8/attac...

...epository) under CentOS 5.2 and I need encrypted connection. Daemon is configured perfectly, there is no problem - if iptables is off connection is smoothly established, but when iptables is on, connection in FTP client ends on command LIST without response. Last command with response (positive) is PASV. Thank you for your replies Martin ??astn?

...oblem: Using the Shorewall Action AllowFTP does not result in desired behavior when connecting from Internet to machines behind firewall in DMZ. From my understanding, ip_conntrac should see a person come in on port 21, and automatically open either port 20 in regular ftp mode, or open highports in pasv mode. This does not happen, and using either regular or pasv transfers fail. I had to manually open the ftp-data and the high ports to allow my clients to ftp in. Shorewall version 2.2.4 ip addr show 1: lo: <LOOPBACK,UP> mtu 16436 qdisc noqueue link/loopback 00:00:00:00:00:00 brd 00:00:...

...m the internet client. My box then sent back a SYN ACK... which the client does not recieve! (i had ethereal on there as well.) So then the client sends another SYN thinking that something is wrong... and the process continues until time out. Second, i tried to do an FTP server on port 2121 (PASV) and now that''s doing the same thing! I don''t understand this since my policy is loc net ACCEPT. in fact, it''s all based off the two-interface example posted on shorewall.net. Shorewall Version: 1.4.2 IPs are eth0 192.168.1.3 (Net) eth1 192.168.5.3 (Loc...

Hi, first i must tell you, that my english is not the best, i hav learned my english from manpages and documentation. Please excuse this. I have setted up a Box w/FreeBSD 4.7-RELEASE for connecting to the w3 through an DSL/ATM-Connection. Now i know the stateful handling of firewall-rules under linux with iptables.In the second i have understand that FreeBSD comes with the netfilter-extensions.

...27.0.0.1]): dispatching CMD command 'SYST' to mod_core Aug 13 12:00:39 LCENT05 proftpd[2922] 192.168.1.48 (127.0.0.1[127.0.0.1]): dispatching LOG_CMD command 'SYST' to mod_log Aug 13 12:00:45 LCENT05 proftpd[2922] 192.168.1.48 (127.0.0.1[127.0.0.1]): dispatching PRE_CMD command 'PASV' to mod_tls Aug 13 12:00:45 LCENT05 proftpd[2922] 192.168.1.48 (127.0.0.1[127.0.0.1]): dispatching PRE_CMD command 'PASV' to mod_core Aug 13 12:00:45 LCENT05 proftpd[2922] 192.168.1.48 (127.0.0.1[127.0.0.1]): dispatching PRE_CMD command 'PASV' to mod_core Aug 13 12:00:45 LCENT05...

...nd I use publish 8021 to public but the ftp is actually running port 21, so I added this rule DNAT net loc:192.168.1.3:21 tcp 8021 however in this rule, the client should connect in port mode but it is a security risk so I ve to open and forward a range of port say 5000 - 5500 for PASV how to do it ? possible ?

Hi, all. Shorewall Version: 1.3.12 I''m unable to list files (using PASV *or* PORT mode) on any FTP site that listens on a port other than 21 (from a client machine behind Shorewall -- from the Shorewall box I can list files no problem on the same sites) I have "Netfilter FTP" support compiled IN the kernel. Any ideas? My rule set is pretty generic. LOC -&...

Hi list, im having a problem with proftpd access when my firewall is running. Im using centos 4.3 with proftpd-1.2.10-10.2.el4.rf i haven't done any modification from my proftpd i just run the server. my iptables ruleset is very simple i use stateful routing. iptables -A INPUT -i ! $WAN -j ACCEPT iptables -A INPUT -i $WAN -m state --state NEW -p tcp --dport 21 -j ACCEPT -- Regards,

...st "Running... App = sip.ld" and: Welcome! Processing configuration... "This may take a few seconds." Then it displays: Config file error Error is 0x4020 and reboots continuously, repeating the above. Anyone seen this before? Is this a corrupt *.ld file? An FTP error? (PASV)? A missing SETUP setting? Thanks! -- Jim Rice by Design Publishing 11626 N. Tracey Road Hayden, Idaho 83835 (208) 772-8060 x201

...o find it. Any idea, anyone? I have added these ''options'' and did a network restart, but it doesn''t seem to work. Maybe I have to restart ? Or put the options somewhere else? >> As of know I have to leave ports 2000-2100 open, my ftp server uses >> those for pasv connections, Id rather use the ip_conntrack_ftp >> Option tho. Is it of any matter that my ftp server uses a non >> standard port (24562) ?? >Er -- just how do you think ip_conntrack_ftp knows that port 24562 is FTP > unless you tell it? >In /etc/modules.conf (or whatever your...