Syndicate content

FTP not working?!

Well... I knew that a firewall could generate a few problems, but this one, I did not expect!

I just could not FTP anything from my FedoraCore box. I checked the source system firewall, tweaked all sorts of options in the vsftpd.conf file to no aval.

The error I was getting was this:

Mon Aug 11 21:31:57 2008 [pid 12033] CONNECT: Client "192.168.2.11"
Mon Aug 11 21:31:57 2008 [pid 12032] [alexis] OK LOGIN: Client "192.168.2.11"
Mon Aug 11 21:31:57 2008 [pid 12034] [alexis] FAIL DOWNLOAD: Client "192.168.2.11", \
               "{fullpath to}/ubuntu-8.04.1-server-amd64.iso", 0.00Kbyte/sec

I read that permissions could be wrong. Not the case.

The firewall has some REJECT and DROP rules. None of which would increase when I was getting the FAIL DOWNLOAD message.

The fact was that the FedoraCore system firewall was not accepting the connection. That's why it would fail. I thus opened the firewall a bit by adding a rule like this:

-A INPUT -i eth0 -p tcp -m tcp -s 192.168.2.1 -d 192.168.2.2 --sport 20 -j ACCEPT

Then it finally worked.

Note that I am using FTP in non-passive mode. This is important because I do not want to open "random" ports on my server. There is nothing to control that in vsftpd as far as I know. Which sucks. My company's FTP server will automatically change the firewall and open ports as required. Once the FTP connection ends, the port is closed in the firewall. This means the port is open only very temporarily.

Anyway, all that to say that the message FAIL DOWNLOAD blah means nothing when it could be telling you: could not connect to client. At least that way you'd know right away what's wrong.

Syndicate content

Diverse Realty

Diverse Realty Team

Want a New Home?
Want to Sell Your House?

Call Alex at
+1 (916)
220 6482

Alexis Wilke, Realtor
Salesperson
Lic. # 02024063

Cory Marcus, Broker
Lic. # 01079165

     

Terms of Site Index

Find the page/content you are looking for with our index.

  • FIFO
    First In, First Out--This is another way to speak of a pipe or ring buffer. On one side, there is a generator that pushes data in and on the other side you have another program that reads the data sent by the generator. The data comes out in the same order it was pushed in. Usually the data are bytes, but it should be a short, long or even a complete event or object.
  • freeware
  • g++
    C++ compiler from the GNU compiler suite. Compliant as much as possible to the C++ standard. Includes support of a complete standard library (STL).
  • mount
  • resize