Date: Tue, 14 Feb 2006 13:41:32 +0100 From: "Daniel A." <ldrada@gmail.com> To: questions@freebsd.org Subject: Cant login to FTP server. Message-ID: <5ceb5d550602140441o2ee7e458j689000550fb87198@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, I have some FTP login problems.
I run FreeBSD 6.0-RELEASE, and I have ipf and ipnat enabled.
_______SNIP_______
Status:=09Connecting to dienub.org ...
Status:=09Connected with dienub.org. Waiting for welcome message...
Response:=09220 m00h.dienub.org FTP server (Version 6.00LS) ready.
Command:=09USER **************
Response:=09331 Password required for alive.
Command:=09PASS **************
Response:=09230 User alive logged in.
Command:=09FEAT
Response:=09500 FEAT: command not understood.
Command:=09SYST
Response:=09215 UNIX Type: L8 Version: BSD-199506
Status:=09Connected
Status:=09Retrieving directory listing...
Command:=09PWD
Response:=09257 "/usr/home/alive" is current directory.
Command:=09TYPE A
Response:=09200 Type set to A.
Command:=09PASV
Response:=09227 Entering Passive Mode (87,49,144,133,237,45)
Command:=09LIST
Error:=09Transfer channel can't be opened. Reason: A connection attempt
failed because the connected party did not properly respond after a
period of time, or established connection failed because connected
host has failed to respond.
Error:=09Could not retrieve directory listing
Command:=09TYPE A
_______SNIP_______
/etc/ipf.rules:
_______SNIP_______
# Let clients behind the firewall send out to the internet, and replies to
# come back in by keeping state.
pass out quick on rl0 proto tcp all keep state
pass out quick on rl0 proto udp all keep state
pass out quick on rl0 proto icmp all keep state
# Since nothing should be coming from these address ranges, block them
block in quick on rl0 from 192.168.0.0/16 to any
block in quick on rl0 from 172.16.0.0/12 to any
block in quick on rl0 from 10.0.0.0/8 to any
block in quick on rl0 from 127.0.0.0/8 to any
block in quick on rl0 from 192.0.2.0/24 to any
# Let's let people access the services running behind this system
# Let's let people access the services running on this system
pass in quick on rl0 proto tcp from any to any port 30000 >< 50000
flags S keep state #PASV FTP
pass in quick on rl0 proto tcp from any to any port =3D 21 #FTP
pass in quick on rl0 proto tcp from any to any port =3D 22 #SSH
pass in quick on rl0 proto tcp from any to any port =3D 80 #WWW
pass in quick on rl0 proto tcp from any to any port =3D 113 #oidentd
# Steam Dedicated Server
#pass in quick on rl0 proto udp from any to any port =3D 1200 # Friends net=
work
#pass in quick on rl0 proto udp from any to any port 26999 >< 27016 # Gamep=
ort
#pass in quick on rl0 proto udp from any to any port =3D 27020
#pass in quick on rl0 proto tcp from any to any port 27029 >< 27040
#pass in quick on rl0 proto tcp from any to any port =3D 27015 # SRCDS Rcon
# Block everything else
block in quick on rl0 all
_______SNIP_______
/etc/ipnat.rules
_______SNIP_______
map rl0 192.168.0.0/16 -> 0.0.0.0/32 proxy port ftp ftp/tcp
map rl0 192.168.0.0/16 -> 0.0.0.0/32 portmap tcp/udp 1025:65000
map rl0 192.168.0.0/16 -> 0.0.0.0/32
_______SNIP_______
Might the problem be anywhere else besides my ipf and ipnat configs?
Could it be the remote client that's the problem?
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5ceb5d550602140441o2ee7e458j689000550fb87198>