Problems with FTP server

[Guest Carlos Tarik]

Hello everybody, first of all thanks.....

 

There is one FTP server in my local LAN.... The FTP server use Mandriva 2007 as OS and there are two network interfaces (eth0, eth1). The FTP software is proftpd, on this server there is a firewall too, the Shorewall...

 

In eth0 is my DSL connection, and in eth1 is my LAN, when I try ftp from my LAN its ok, don't have problem, but when I try from Internet (Remote Location) doesn't work..... I am learning Linux, but if anybody can help me i will apreciate....

 

There is one rule on firewall that I don't know if is right:

 

ACCEPT net fw tcp 20,21,25,109,110,143,137,138,139,445,1024:1100 -

 

 

Thanks for now and that's all.

[ianw1974]

What is your internet connection being managed by? Is it a ADSL router? Does it have a firewall on it? Does it have an static IP, or is it DHCP assigned by your ISP?

 

It could be that your isp is blocking you from running an FTP server, or that the router with the NAT is causing the problem.

[Guest Carlos Tarik]

Is one CABLE-MODEM direct connect to my interface, there is a firewall in the same , but I turn off the service firewall and the problem still occur.

 

Is DHCP assigned by my ISP.... maybe my ISP is blocking me to run a FTP server, i don't know...

 

My question is; Does it have any configuration in ftp .conf file that block acces from Internet and allow acces from LAN, have it? because in my LAN the ftp server work very good, only by the internet doesn't work.

 

 

I'm have a terrible headeach today!!!jejeje

 

Thanks

[ianw1974]

Check this, and post here so we can see the output:

 

netstat -tan

 

mostly we're interested in what is listening on port 21. If it says 0.0.0.0 against it, then we are listening on all connections, so it should work unless it's blocked by your ISP. If you find it's listening on your internal IP address, then this will be why.

[Guest Carlos Tarik]

Check this, and post here so we can see the output:

 

netstat -tan

 

mostly we're interested in what is listening on port 21. If it says 0.0.0.0 against it, then we are listening on all connections, so it should work unless it's blocked by your ISP. If you find it's listening on your internal IP address, then this will be why.

 

The command result is:

 

tcp 0 0 0.0.0.0:993 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:2273 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:2049 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:610 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:995 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:46472 0.0.0.0:* OUÃA

tcp 0 0 127.0.0.1:10026 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:3306 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:139 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:110 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:143 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:111 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:80 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:6000 0.0.0.0:* OUÃA

tcp 0 0 192.168.1.254:53 0.0.0.0:* OUÃA

tcp 0 0 192.168.0.254:53 0.0.0.0:* OUÃA

tcp 0 0 201.52.8.122:53 0.0.0.0:* OUÃA

tcp 0 0 127.0.0.1:53 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:58135 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:25 0.0.0.0:* OUÃA

tcp 0 0 127.0.0.1:953 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:443 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:7741 0.0.0.0:* OUÃA

tcp 0 0 0.0.0.0:445 0.0.0.0:* OUÃA

tcp 0 0 :::6000 :::* OUÃA

tcp 0 0 :::21 :::* OUÃA

tcp 0 0 :::22 :::* OUÃA

tcp 0 132 ::ffff:192.168.0.254:22 ::ffff:192.168.0.212:1125 ESTABELECIDA

 

What's the problem?

[ianw1974]

Well, the immediate problem I see is that ftp only seems to be listening on IPV6 addresses and not on IPV4!

 

I can only guess this is the reason why you cannot see it from your internet connection, as it's not listening on 0.0.0.0:21 as it should be.

 

Check your proftpd config and fix it. I don't use proftpd so can't help you there, I use vsftpd which is far better.

[ianw1974]

Disable ipv6 by adding this to /etc/modprobe.conf:

 

alias net-pf-10 off

 

then do:

 

urpmi drakwizard

 

and after this go to System/Configure/Configure Your Computer. In here you should find the wizard for configuring an FTP Server, it should work after this.

[Guest Carlos Tarik]

Thank you now my server is running in IPv4 , but the problem continue... I change the port number, I turn off the shorewall and nothing happen... Where I make mistake..... There is a problem if I using DHCP but I set my IP addres manualy, dont call one DHCP server....

[ianw1974]

Yes, it will be a problem using DHCP, because your address will always change otherwise. Make sure your system is configured for a static IP address.

 

Once done, please post the results from:

 

ifconfig -a

 

and:

 

netstat -tan

 

I need to see what is happening and if ftp is running on IPV4 now.

[Guest Carlos Tarik]

[b]ifconfig -a[/b]

eth0	Link encap:Ethernet  Endereço de HW 00:02:55:5D:0F:CE
	  inet end.: 201.52.8.122  Bcast:201.52.15.255  Masc:255.255.240.0
	  UP BROADCASTRUNNING MULTICAST  MTU:1500  Métrica:1
	  RX packets:206055 errors:0 dropped:0 overruns:0 frame:0
	  TX packets:9301 errors:0 dropped:0 overruns:0 carrier:0
	  colisões:0 txqueuelen:1000
	  RX bytes:27990091 (26.6 MiB)  TX bytes:1231928 (1.1 MiB)
	  IRQ:19

eth1	Link encap:Ethernet  Endereço de HW 00:02:B3:92:BD:34
	  inet end.: 192.168.0.254  Bcast:192.168.0.255  Masc:255.255.255.0
	  UP BROADCASTRUNNING MULTICAST  MTU:1500  Métrica:1
	  RX packets:8849 errors:0 dropped:0 overruns:0 frame:0
	  TX packets:12361 errors:0 dropped:0 overruns:0 carrier:0
	  colisões:0 txqueuelen:1000
	  RX bytes:1107005 (1.0 MiB)  TX bytes:14953712 (14.2 MiB)
	  IRQ:20


lo		Link encap:Loopback Local
	  inet end.: 127.0.0.1  Masc:255.0.0.0
	  UP LOOPBACKRUNNING  MTU:16436  Métrica:1
	  RX packets:91 errors:0 dropped:0 overruns:0 frame:0
	  TX packets:91 errors:0 dropped:0 overruns:0 carrier:0
	  colisões:0 txqueuelen:0
	  RX bytes:7022 (6.8 KiB)  TX bytes:7022 (6.8 KiB)

[b]netstat -tan[/b]

tcp		0	  0 0.0.0.0:2049				0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:993				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:995				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:968				 0.0.0.0:*				   OUÃA
tcp		0	  0 127.0.0.1:10026			 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:3306				0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:60682			   0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:139				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:814				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:110				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:143				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:111				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:80				  0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:6000				0.0.0.0:*				   OUÃA
tcp		0	  0 192.168.0.254:53			0.0.0.0:*				   OUÃA
tcp		0	  0 201.52.8.122:53			 0.0.0.0:*				   OUÃA
tcp		0	  0 127.0.0.1:53				0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:22				  0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:25				  0.0.0.0:*				   OUÃA
tcp		0	  0 127.0.0.1:953			   0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:443				 0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:44699			   0.0.0.0:*				   OUÃA
[b]tcp		0	  0 0.0.0.0:21021			   0.0.0.0:*				   OUÃA[/b]
tcp		0	  0 0.0.0.0:7741				0.0.0.0:*				   OUÃA
tcp		0	  0 0.0.0.0:445				 0.0.0.0:*				   OUÃA
tcp		0	264 192.168.0.254:22			192.168.0.212:3783		  ESTABELECIDA

I have changed the ftp port to 21021, just to try...

[ianw1974]

OK, well the FTP is now configured on IPV4 perfectly well now so in theory it should work. If not, I would say your ISP is blocking you from running an FTP server.