Forum » Omrežja in internet » problem z proftpd
problem z proftpd
rok_p ::
imam debian 4, shorewall in proftpd. ko se hočem povezat na ftp server mi v filezilli javi tole:
Status: Connecting to 192.168.0.1 ...
Status: Connected with 192.168.0.1. Waiting for welcome message...
Response: 220 FTP Server @ 1xx.xxx.xxx.xxx
Command: USER ftpserver
Response: 331 Password required for ftpserver.
Command: PASS ******
Response: 230 User ftpserver logged in.
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: REST STREAM
Response: SIZE
Response: 211 End
Command: SYST
Response: 215 UNIX Type: L8
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/home/ftpserver" is current directory.
Command: TYPE A
Response: 200 Type set to A
Command: PASV
Response: 227 Entering Passive Mode (192,168,0,1,159,98).
Command: LIST
Error: Transfer channel can't be opened. Reason: No connection could be made because the target machine actively refused it.
Error: Could not retrieve directory listing
Command: TYPE I
V shorewallu imam dodano naslednje pravilo:
ACCEPT net $FW tcp 21
ACCEPT loc $FW tcp 21
Status: Connecting to 192.168.0.1 ...
Status: Connected with 192.168.0.1. Waiting for welcome message...
Response: 220 FTP Server @ 1xx.xxx.xxx.xxx
Command: USER ftpserver
Response: 331 Password required for ftpserver.
Command: PASS ******
Response: 230 User ftpserver logged in.
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: REST STREAM
Response: SIZE
Response: 211 End
Command: SYST
Response: 215 UNIX Type: L8
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/home/ftpserver" is current directory.
Command: TYPE A
Response: 200 Type set to A
Command: PASV
Response: 227 Entering Passive Mode (192,168,0,1,159,98).
Command: LIST
Error: Transfer channel can't be opened. Reason: No connection could be made because the target machine actively refused it.
Error: Could not retrieve directory listing
Command: TYPE I
V shorewallu imam dodano naslednje pravilo:
ACCEPT net $FW tcp 21
ACCEPT loc $FW tcp 21
rok
OmegaBlue ::
Stvar ti preklopi na passive mode, poglej kako imaš nastavljeno v proftpd za passive in odpri še tiste porte na firewallu (ker trenutno imaš zaprte). Ali pa nastavi clienta na active mode.
Edit.
V proftpd.conf imaš "PassivePorts lowport highport", dodaj še te v firewall.
Seveda lahko spremeniš tiste po defaultu.
Edit.
V proftpd.conf imaš "PassivePorts lowport highport", dodaj še te v firewall.
Seveda lahko spremeniš tiste po defaultu.
Never attribute to malice that which can be adequately explained by stupidity.
Zgodovina sprememb…
- spremenil: OmegaBlue ()
rok_p ::
V proftpd.conf imam sledeče:
# Port 21 is the standard FTP port.
Port 21
# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
#PassivePorts 2100 2101
po takšnem bi mogli biti passiveporti zaprti, ali?
# Port 21 is the standard FTP port.
Port 21
# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
#PassivePorts 2100 2101
po takšnem bi mogli biti passiveporti zaprti, ali?
rok
OmegaBlue ::
ne ;) samo sam jih izbere. Potem clientu nastavi naj uporablja active mode, če tega ne želiš.
Never attribute to malice that which can be adequately explained by stupidity.
Vredno ogleda ...
| Tema | Ogledi | Zadnje sporočilo | |
|---|---|---|---|
| Tema | Ogledi | Zadnje sporočilo | |
| » | FileZilla ftp strežnikOddelek: Omrežja in internet | 5510 (3414) | vice boy |
| » | ProtFtp Passive mode in iptablesOddelek: Programska oprema | 2219 (2041) | SasoS |
| » | FTP dostop Bulletproof serverOddelek: Omrežja in internet | 1855 (1604) | kunigunda |
| » | Osnovna varnostOddelek: Omrežja in internet | 1993 (1508) | iNN |
| » | Problem z FTP dostopomOddelek: Omrežja in internet | 1151 (1059) | 64202 |