Hi,
I’m having problems with vsftpd on SuSe 11.0. I can ftp from a remote machine, but can’t access the files: for example if I type “ls”, it says “Entering Passive Mode” and eventually times out.
I’ve tried restarting vsftpd, double checked the vsftpd.config, used “modprobe ip_nat_ftp”, making sure vsftpd is listed as an allowed service for firewall, nothing helps.
Any suggestions?
Alisa
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
How familiar are you with the difference(s) between Active and Passive
mode FTP? With Passive mode the FTP server must have a fairly liberal
firewall with regard to its high ports. For example the Wikipedia entry
for FTP is really good and covers this nicely.
http://en.wikipedia.org/wiki/File_Transfer_Protocol
For example the following is from a simple test I did:
230 Anonymous access granted, restrictions apply.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> cd incoming
250 CWD command successful
ftp> binary
200 Type set to I
ftp> put bigfile.big
local: bigfile.big remote: bigfile.big
229 Entering Extended Passive Mode (|||35637|)
150 Opening BINARY mode data connection for bigfile.big
|**********************************|100% 976 MB 41.34 MB/s 00:00 ETA
226 Transfer complete.
1024000000 bytes sent in 00:23 (41.34 MB/s)
So when I typed ‘put bigfile.big’ the server sent my client the number
35637, which is the port on the SERVER side to which I connected. netstat
showed the following:
tcp 0 46416 137.65.120.60:51835 130.57.1.88:35637 ESTABLISHED 26211/ftp
tcp 0 0 137.65.120.60:41694 130.57.1.88:21 ESTABLISHED 26211/ftp
Notice how FTP connected to the number from the server (35637) which had
not previously been open on the server side. As a result the server’s
firewall must either dynamically open that port somehow or must just leave
those potential ports open all the time. If this is not set properly the
symptom you describe happens.
Good luck.
akrishta wrote:
> Hi,
>
> I’m having problems with vsftpd on SuSe 11.0. I can ftp from a remote
> machine, but can’t access the files: for example if I type “ls”, it says
> “Entering Passive Mode” and eventually times out.
>
> I’ve tried restarting vsftpd, double checked the vsftpd.config, used
> “modprobe ip_nat_ftp”, making sure vsftpd is listed as an allowed
> service for firewall, nothing helps.
>
> Any suggestions?
>
> Alisa
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQIcBAEBAgAGBQJKlUqqAAoJEF+XTK08PnB5cd0QAKtOUfbFHyU3kMcTYwDamv8v
Nff2iUxuQRVjFAqCmO43fL6d1cQNHHqIEuLsFmDz7RViWMLMjRrzcnuomwPjeKzV
3FxYjhwTl0msw0oAEpQ2y1wyRX67snbosVVsjCkTKF49El6w2rR8f7M086UX9br9
tQ9ZPo5Zh44XzRRmPxMq0rbWqxRBNVYfw8ZjtYMXrT3FF/xPmR5ObW4vRk5Vxnma
w94vWxWZO9+7kZnH4ffHAbOOwrgzBK+6XTdXjLSv0EXYPxUzgAHD9AGJjhbv3wfp
eQEAh+hK8BEbUCgs//zcFLItAtLXhdNSzZtuuMObsnqXNPgSgJN+DFkKITLz/BHf
uJlWESkoi/+kC3Dyb2zGdzbsgPjDC9bx538+x78NmEyNTS5T7rakYCU4eom7Wx53
2HDZ+02Mq5tEiwr+7m6C5WBsTRXOgZAh2sPJQC0ijvWK8lQC4hBLCNe2d9DxU9Bx
8t0GFU/LzrT4K+cRVspNStcCC+2jsWR9nOmW3z+PIbsbT5ONzCBMzkROJascMDkU
7WEwlL+aonhzYJvwtjyB3OZQ80uvwJVPId+QXuNmV5Hwa0zBOPKjIo0o0ivRRGzU
cO5HLeT2swzATlXaJkB5V5IxAWEEt8tjxYQVC2JKH6EIrAZZtRpQbI9g97qSJXoT
kiLxP6XyjTGGHrpI9HXe
=pRL9
-----END PGP SIGNATURE-----
It’s fixed! This is what I did:
add to the vsftpd.conf file the two lines
pasv_min_port=30000
pasv_max_port=30100
Free this range of ports explicitly for the Firewall.
Thanks a lot for pushing me in the right direction 
Hi
i use suse 10 sp2
i was trying to configure a syslog server
after adding thees lines in syslog-ng.config
this is for separating out network hosts into individual log files.
destination std {
file ("/var/log/HOSTS/$YEAR-$MONTH/$HOST$FACILITY-$YEAR-$MONTH-$DAY"
owner(root) group(root) perm(0600) dir_perm(0700) create_dirs(yes)); **in was (y/es) /B and i coorrcted it
};
log {
source(src);
destination(std);
};
after saving runing SuSEconfig and restarting syslog-ng
here what i see:
Shutting down syslog services done
Starting syslog servicessyntax error at 237
Parse error reading configuration file, exiting. (line 237)
startproc: exit status of parent of /sbin/syslog-ng: 1
failed
ligne 237 file ("/var/log/HOSTS/$YEAR-$MONTH/$HOST
ligne 238/$FACILITY-$YEAR-$MONTH-$DAY" owner(root) group(root) perm(0600) dir_perm(0700) create_dirs(yes));
thank you
d.veera**
idveera wrote:
> Hi
> i use suse 10 sp2
what you are using is more correctly named SUSE Linux Enterprise
Server 10 sp2 (aka SLES 10 sp2)
just in case you do not know: you ARE welcome here, but we don’t ‘do’
SLES here…that is done over in forums.novell.com
this it the openSUSE side…they are NOT exactly alike and most folks
here are running openSUSE 11.1 which will eventually result in the
release of SLED/SLES 12
–
goldie
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
That’s great to hear. Thank-you for posting back your results.
Good luck.
akrishta wrote:
> It’s fixed! This is what I did:
>
> 1) add to the vsftpd.conf file the two lines
> pasv_min_port=30000
> pasv_max_port=30100
>
> 2) Free this range of ports explicitly for the Firewall.
>
> Thanks a lot for pushing me in the right direction
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/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=Zk+f
-----END PGP SIGNATURE-----