vsftpd problem on OpenSuse 11

HI everyone! I want to make a small ftp server on opensue 11. I just installed yast2 ftp-server and then installed vsftpd . I configured the server to access the server only the local users (authentified users). If i log on local 127.0.0.1 it works.The problem is how can i log in from external? I tried from a friend with filezilla client with the external ip obtained from My IP is 137.65.224.10 - Quick and Easy way to SEE my IP address - CmyIP.com and it said…


Response: 530 Permission denied
Error:	Could not connect to server

Any help will be appreciated!

Thanks!

if you have a router you have to open the port for the ftp server also if your running suse’s firewall you might have to open it there
but i’ve had basically the same problem with vsftpd
so i found this link and it works perfectly
Cool Solutions: Installing Pure-FTPd on SLES 10

thanks for the reply.I will read and see if pure-ftpd works.

Cheers!

the same thing! I have done exactly like there. When i connect with the external ip with filezilla it said


Status:	Connection established, waiting for welcome message...
Response:	220-Welcome to Pure-FTPd.
Response:	220-You are user number 1 of 10 allowed.
Response:	220-This is a private system - No anonymous login
Response:	220-IPv6 connections are also welcome on this server.
Response:	220 You will be disconnected after 15 minutes of inactivity.
Command:	USER cezar
Response:	331 User cezar OK. Password required
Command:	PASS **********
Error:	Could not connect to server

i added the this service pureftpd in firewall to.

Any ideas why?

Sorry thats the message when i connect local 127.0.0.1 When i connect with external ip it said


Status:	Connection established, waiting for welcome message...
Response:	220 Inactivity timer = 120 seconds. Use 'site idle <secs>' to change.
Command:	USER cezar
Response:	331  Password required.
Command:	PASS **********
Response:	530 Permission denied

…and yes i forgot to mention i have a dsl modem it could be this the problem?

Running a ftp server behind a firewall is more problematic than running a ftp client. Because nearly all clients will use passive ftp, so your server has to accept that. This means that for your server, you have to be willing to open up high ports in response to commands on the control port. Since the high port number is embedded in the command stream, you need connection tracking. This can be done with a Linux firewall using iptables modules. But your modem’s firewall may or may not be capable of connection tracking.

One workaround is for to configure the ftp server to restrict itself to a range of data ports and let all those ports through the router. vsftpd can do this, not sure about pure-ftpd.

If your logins are non-anonymous, ftp sends passwords in plaintext over the Internet. Since by default the ftp password is also the login password it means that anybody watching the stream could capture the password. So I would recommend a more secure means of transfer, like ftp over ssl.

Thanks for the reply! My modem is using a firewall but is disable, i try to run the server without any firewall but no luck…only local can work to connect. I don`t get it why? I will take in mind about the security.

Regards, Calin

Even if you have turned the firewall in your router off (which is a risky thing to do BTW), the router is still doing NAT and the embedded OS on the router has to deal with the interaction of NAT and FTP.

Anyway i don`t think my dsl modem acts like a router anyway…(i am not so good at networking) but i think is a big differece between a router and a dsl modem. I guess you are right anyway…neither vsftp and neither pure-ftpd works external. I will try to configure the firewall from my dsl modem and see if it works.

Cheers!

If your’s is a home account, your DSL thingy is probably a combined modem/router.

yes, it is a home account. It could be…:slight_smile:

Cheers!

It works now! You were right that my modem acts like a router and configured the firewall (set to standard because it was disable) and add the configured ftp server from there. Now i can connect with the external ip

Thanks for the help!

Cheers!