Results 1 to 6 of 6

Thread: ftp times out

  1. #1
    akrishta NNTP User

    Default ftp times out

    Hi,

    I'm having problems with vsftpd on SuSe 11.0. I can ftp from a remote machine, but can't access the files: for example if I type "ls", it says "Entering Passive Mode" and eventually times out.

    I've tried restarting vsftpd, double checked the vsftpd.config, used "modprobe ip_nat_ftp", making sure vsftpd is listed as an allowed service for firewall, nothing helps.

    Any suggestions?

    Alisa

  2. #2

    Default Re: ftp times out

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    How familiar are you with the difference(s) between Active and Passive
    mode FTP? With Passive mode the FTP server must have a fairly liberal
    firewall with regard to its high ports. For example the Wikipedia entry
    for FTP is really good and covers this nicely.

    http://en.wikipedia.org/wiki/File_Transfer_Protocol

    For example the following is from a simple test I did:

    230 Anonymous access granted, restrictions apply.
    Remote system type is UNIX.
    Using binary mode to transfer files.
    ftp> cd incoming
    250 CWD command successful
    ftp> binary
    200 Type set to I
    ftp> put bigfile.big
    local: bigfile.big remote: bigfile.big
    229 Entering Extended Passive Mode (|||35637|)
    150 Opening BINARY mode data connection for bigfile.big
    |**********************************|100% 976 MB 41.34 MB/s 00:00 ETA
    226 Transfer complete.
    1024000000 bytes sent in 00:23 (41.34 MB/s)

    So when I typed 'put bigfile.big' the server sent my client the number
    35637, which is the port on the SERVER side to which I connected. netstat
    showed the following:

    tcp 0 46416 137.65.120.60:51835 130.57.1.88:35637 ESTABLISHED 26211/ftp
    tcp 0 0 137.65.120.60:41694 130.57.1.88:21 ESTABLISHED 26211/ftp

    Notice how FTP connected to the number from the server (35637) which had
    not previously been open on the server side. As a result the server's
    firewall must either dynamically open that port somehow or must just leave
    those potential ports open all the time. If this is not set properly the
    symptom you describe happens.

    Good luck.






    akrishta wrote:
    > Hi,
    >
    > I'm having problems with vsftpd on SuSe 11.0. I can ftp from a remote
    > machine, but can't access the files: for example if I type "ls", it says
    > "Entering Passive Mode" and eventually times out.
    >
    > I've tried restarting vsftpd, double checked the vsftpd.config, used
    > "modprobe ip_nat_ftp", making sure vsftpd is listed as an allowed
    > service for firewall, nothing helps.
    >
    > Any suggestions?
    >
    > Alisa
    >
    >

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v2.0.9 (GNU/Linux)
    Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

    iQIcBAEBAgAGBQJKlUqqAAoJEF+XTK08PnB5cd0QAKtOUfbFHyU3kMcTYwDamv8v
    Nff2iUxuQRVjFAqCmO43fL6d1cQNHHqIEuLsFmDz7RViWMLMjRrzcnuomwPjeKzV
    3FxYjhwTl0msw0oAEpQ2y1wyRX67snbosVVsjCkTKF49El6w2rR8f7M086UX9br9
    tQ9ZPo5Zh44XzRRmPxMq0rbWqxRBNVYfw8ZjtYMXrT3FF/xPmR5ObW4vRk5Vxnma
    w94vWxWZO9+7kZnH4ffHAbOOwrgzBK+6XTdXjLSv0EXYPxUzgAHD9AGJjhbv3wfp
    eQEAh+hK8BEbUCgs//zcFLItAtLXhdNSzZtuuMObsnqXNPgSgJN+DFkKITLz/BHf
    uJlWESkoi/+kC3Dyb2zGdzbsgPjDC9bx538+x78NmEyNTS5T7rakYCU4eom7Wx53
    2HDZ+02Mq5tEiwr+7m6C5WBsTRXOgZAh2sPJQC0ijvWK8lQC4hBLCNe2d9DxU9Bx
    8t0GFU/LzrT4K+cRVspNStcCC+2jsWR9nOmW3z+PIbsbT5ONzCBMzkROJascMDkU
    7WEwlL+aonhzYJvwtjyB3OZQ80uvwJVPId+QXuNmV5Hwa0zBOPKjIo0o0ivRRGzU
    cO5HLeT2swzATlXaJkB5V5IxAWEEt8tjxYQVC2JKH6EIrAZZtRpQbI9g97qSJXoT
    kiLxP6XyjTGGHrpI9HXe
    =pRL9
    -----END PGP SIGNATURE-----

  3. #3
    akrishta NNTP User

    Default Re: ftp times out

    It's fixed! This is what I did:

    1) add to the vsftpd.conf file the two lines
    pasv_min_port=30000
    pasv_max_port=30100

    2) Free this range of ports explicitly for the Firewall.

    Thanks a lot for pushing me in the right direction

  4. #4

    Default Re: syslog-ng

    Hi
    i use suse 10 sp2

    i was trying to configure a syslog server


    after adding thees lines in syslog-ng.config

    this is for separating out network hosts into individual log files.
    destination std {
    file ("/var/log/HOSTS/$YEAR-$MONTH/$HOST$FACILITY-$YEAR-$MONTH-$DAY"
    owner(root) group(root) perm(0600) dir_perm(0700) create_dirs(yes)); [B]in was (y/es) /B and i coorrcted it
    };
    log {
    source(src);
    destination(std);
    };

    after saving runing SuSEconfig and restarting syslog-ng
    here what i see:

    Shutting down syslog services done
    Starting syslog servicessyntax error at 237
    Parse error reading configuration file, exiting. (line 237)
    startproc: exit status of parent of /sbin/syslog-ng: 1
    failed

    ligne 237 file ("/var/log/HOSTS/$YEAR-$MONTH/$HOST
    ligne 238/$FACILITY-$YEAR-$MONTH-$DAY" owner(root) group(root) perm(0600) dir_perm(0700) create_dirs(yes));


    thank you

    d.veera

  5. #5
    goldie NNTP User

    Default Re: ftp times out

    idveera wrote:
    > Hi
    > i use suse 10 sp2


    what you are using is more correctly named SUSE Linux Enterprise
    Server 10 sp2 (aka SLES 10 sp2)

    just in case you do not know: you ARE welcome here, but we don't 'do'
    SLES here....that is done over in forums.novell.com

    this it the openSUSE side....they are NOT exactly alike and most folks
    here are running openSUSE 11.1 which will eventually result in the
    release of SLED/SLES 12

    --
    goldie

  6. #6

    Default Re: ftp times out

    -----BEGIN PGP SIGNED MESSAGE-----
    Hash: SHA1

    That's great to hear. Thank-you for posting back your results.

    Good luck.





    akrishta wrote:
    > It's fixed! This is what I did:
    >
    > 1) add to the vsftpd.conf file the two lines
    > pasv_min_port=30000
    > pasv_max_port=30100
    >
    > 2) Free this range of ports explicitly for the Firewall.
    >
    > Thanks a lot for pushing me in the right direction
    >
    >

    -----BEGIN PGP SIGNATURE-----
    Version: GnuPG v2.0.9 (GNU/Linux)
    Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

    iQIcBAEBAgAGBQJKlo3PAAoJEF+XTK08PnB5PGwP/2cDipCkYtu9QejjUHKDZV4W
    S/5dn72qPT1NZQhvU3LdjTMAC91ZChdF29RuEc555kwzcR7wYt+d74x50wiSeHND
    fJ6F1juVq5xiodTVCQmgBIDnWP/wLUKN3BXWzXzKldiRIRPJA+khafDEmVuzbhc/
    6U6fpS1KsIGylyjKL+iiHafUxVK25rGIVapnUz/uIajOs7jKWqQSmHmnQLORQIxe
    LzotXmw0NdVtdZhuEbTt4Mj4Oy03sTxNi3KUXOYbE9Y4PkTDrvOdIKeZ/YU2cPt5
    3A7PjCSFcdvTJv1ov8/YYXhx9WpZdFIvHr7oYtr/581Cf7XSOti4cjX7yY14wqm6
    ysrJOUnYMm2EU0wrOJy+Qp7EE5rp3tpeT/7XjYUJK1OAho3vuqXiDbGhbfYBkgWC
    w812ZZDkCDw5CGSnZRShG1FmFncDhbDSTRdBpGFAJki4F5fJDFg4hzdldTz6/tVm
    XYX80y5ax24YD6uyUuc5PNJZR3P6hcKJ+TxnB6KTLMlaN2cpriCLQDk404rl4fvW
    cNXE4Qr7N1wKzl3lr2Jv+Av8pUQQ2nr5fTCONnfhmCsulih3H9VDlle6EMtmyrZW
    Hj1v6z5eygizlwUWdPwSrpsT8vw1BGUslyc49MrZ7s3i8IDRBj/oSBE5fP6sNb3u
    eucrNkTZwBDC9kysa/lW
    =Zk+f
    -----END PGP SIGNATURE-----

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •