Guest Carlos Tarik Posted December 6, 2006 Report Share Posted December 6, 2006 Hello everybody, first of all thanks..... There is one FTP server in my local LAN.... The FTP server use Mandriva 2007 as OS and there are two network interfaces (eth0, eth1). The FTP software is proftpd, on this server there is a firewall too, the Shorewall... In eth0 is my DSL connection, and in eth1 is my LAN, when I try ftp from my LAN its ok, don't have problem, but when I try from Internet (Remote Location) doesn't work..... I am learning Linux, but if anybody can help me i will apreciate.... There is one rule on firewall that I don't know if is right: ACCEPT net fw tcp 20,21,25,109,110,143,137,138,139,445,1024:1100 - Thanks for now and that's all. Quote Link to comment Share on other sites More sharing options...
ianw1974 Posted December 6, 2006 Report Share Posted December 6, 2006 What is your internet connection being managed by? Is it a ADSL router? Does it have a firewall on it? Does it have an static IP, or is it DHCP assigned by your ISP? It could be that your isp is blocking you from running an FTP server, or that the router with the NAT is causing the problem. Quote Link to comment Share on other sites More sharing options...
Guest Carlos Tarik Posted December 6, 2006 Report Share Posted December 6, 2006 Is one CABLE-MODEM direct connect to my interface, there is a firewall in the same , but I turn off the service firewall and the problem still occur. Is DHCP assigned by my ISP.... maybe my ISP is blocking me to run a FTP server, i don't know... My question is; Does it have any configuration in ftp .conf file that block acces from Internet and allow acces from LAN, have it? because in my LAN the ftp server work very good, only by the internet doesn't work. I'm have a terrible headeach today!!!jejeje Thanks Quote Link to comment Share on other sites More sharing options...
ianw1974 Posted December 7, 2006 Report Share Posted December 7, 2006 Check this, and post here so we can see the output: netstat -tan mostly we're interested in what is listening on port 21. If it says 0.0.0.0 against it, then we are listening on all connections, so it should work unless it's blocked by your ISP. If you find it's listening on your internal IP address, then this will be why. Quote Link to comment Share on other sites More sharing options...
Guest Carlos Tarik Posted December 7, 2006 Report Share Posted December 7, 2006 Check this, and post here so we can see the output: netstat -tan mostly we're interested in what is listening on port 21. If it says 0.0.0.0 against it, then we are listening on all connections, so it should work unless it's blocked by your ISP. If you find it's listening on your internal IP address, then this will be why. The command result is: tcp 0 0 0.0.0.0:993 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:2273 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:2049 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:610 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:995 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:46472 0.0.0.0:* OUÃA tcp 0 0 127.0.0.1:10026 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:3306 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:139 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:110 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:143 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:111 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:80 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:6000 0.0.0.0:* OUÃA tcp 0 0 192.168.1.254:53 0.0.0.0:* OUÃA tcp 0 0 192.168.0.254:53 0.0.0.0:* OUÃA tcp 0 0 201.52.8.122:53 0.0.0.0:* OUÃA tcp 0 0 127.0.0.1:53 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:58135 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:25 0.0.0.0:* OUÃA tcp 0 0 127.0.0.1:953 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:443 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:7741 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:445 0.0.0.0:* OUÃA tcp 0 0 :::6000 :::* OUÃA tcp 0 0 :::21 :::* OUÃA tcp 0 0 :::22 :::* OUÃA tcp 0 132 ::ffff:192.168.0.254:22 ::ffff:192.168.0.212:1125 ESTABELECIDA What's the problem? Quote Link to comment Share on other sites More sharing options...
ianw1974 Posted December 7, 2006 Report Share Posted December 7, 2006 Well, the immediate problem I see is that ftp only seems to be listening on IPV6 addresses and not on IPV4! I can only guess this is the reason why you cannot see it from your internet connection, as it's not listening on 0.0.0.0:21 as it should be. Check your proftpd config and fix it. I don't use proftpd so can't help you there, I use vsftpd which is far better. Quote Link to comment Share on other sites More sharing options...
ianw1974 Posted December 8, 2006 Report Share Posted December 8, 2006 Disable ipv6 by adding this to /etc/modprobe.conf: alias net-pf-10 off then do: urpmi drakwizard and after this go to System/Configure/Configure Your Computer. In here you should find the wizard for configuring an FTP Server, it should work after this. Quote Link to comment Share on other sites More sharing options...
Guest Carlos Tarik Posted December 8, 2006 Report Share Posted December 8, 2006 Thank you now my server is running in IPv4 , but the problem continue... I change the port number, I turn off the shorewall and nothing happen... Where I make mistake..... There is a problem if I using DHCP but I set my IP addres manualy, dont call one DHCP server.... Quote Link to comment Share on other sites More sharing options...
ianw1974 Posted December 8, 2006 Report Share Posted December 8, 2006 Yes, it will be a problem using DHCP, because your address will always change otherwise. Make sure your system is configured for a static IP address. Once done, please post the results from: ifconfig -a and: netstat -tan I need to see what is happening and if ftp is running on IPV4 now. Quote Link to comment Share on other sites More sharing options...
Guest Carlos Tarik Posted December 8, 2006 Report Share Posted December 8, 2006 [b]ifconfig -a[/b] eth0 Link encap:Ethernet Endereço de HW 00:02:55:5D:0F:CE inet end.: 201.52.8.122 Bcast:201.52.15.255 Masc:255.255.240.0 UP BROADCASTRUNNING MULTICAST MTU:1500 Métrica:1 RX packets:206055 errors:0 dropped:0 overruns:0 frame:0 TX packets:9301 errors:0 dropped:0 overruns:0 carrier:0 colisões:0 txqueuelen:1000 RX bytes:27990091 (26.6 MiB) TX bytes:1231928 (1.1 MiB) IRQ:19 eth1 Link encap:Ethernet Endereço de HW 00:02:B3:92:BD:34 inet end.: 192.168.0.254 Bcast:192.168.0.255 Masc:255.255.255.0 UP BROADCASTRUNNING MULTICAST MTU:1500 Métrica:1 RX packets:8849 errors:0 dropped:0 overruns:0 frame:0 TX packets:12361 errors:0 dropped:0 overruns:0 carrier:0 colisões:0 txqueuelen:1000 RX bytes:1107005 (1.0 MiB) TX bytes:14953712 (14.2 MiB) IRQ:20 lo Link encap:Loopback Local inet end.: 127.0.0.1 Masc:255.0.0.0 UP LOOPBACKRUNNING MTU:16436 Métrica:1 RX packets:91 errors:0 dropped:0 overruns:0 frame:0 TX packets:91 errors:0 dropped:0 overruns:0 carrier:0 colisões:0 txqueuelen:0 RX bytes:7022 (6.8 KiB) TX bytes:7022 (6.8 KiB) [b]netstat -tan[/b] tcp 0 0 0.0.0.0:2049 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:993 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:995 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:968 0.0.0.0:* OUÃA tcp 0 0 127.0.0.1:10026 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:3306 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:60682 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:139 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:814 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:110 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:143 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:111 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:80 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:6000 0.0.0.0:* OUÃA tcp 0 0 192.168.0.254:53 0.0.0.0:* OUÃA tcp 0 0 201.52.8.122:53 0.0.0.0:* OUÃA tcp 0 0 127.0.0.1:53 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:22 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:25 0.0.0.0:* OUÃA tcp 0 0 127.0.0.1:953 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:443 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:44699 0.0.0.0:* OUÃA [b]tcp 0 0 0.0.0.0:21021 0.0.0.0:* OUÃA[/b] tcp 0 0 0.0.0.0:7741 0.0.0.0:* OUÃA tcp 0 0 0.0.0.0:445 0.0.0.0:* OUÃA tcp 0 264 192.168.0.254:22 192.168.0.212:3783 ESTABELECIDA I have changed the ftp port to 21021, just to try... Quote Link to comment Share on other sites More sharing options...
ianw1974 Posted December 8, 2006 Report Share Posted December 8, 2006 OK, well the FTP is now configured on IPV4 perfectly well now so in theory it should work. If not, I would say your ISP is blocking you from running an FTP server. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.