Web-FTP works but network FTP does not

Discussion in 'General' started by weedguy, Apr 25, 2006.

  1. weedguy

    weedguy New Member

    I installed Fedora Core 5 (32 bit) with office packages (including KDE). ISPConfig installed perfectly and I have not had any problems adding accounts. Email and SSL works perfectly too. However, when I attempt to access an account over the network using FTP in a terminal I get an error message stating that the login is incorrect. This happens when I use a terminal on the server itself or using a terminal on a networked computer. But when I use Web-FTP to access the account I can log in perfectly. Can anyone suggest a reason why this would happen?
     
    Last edited: Apr 25, 2006
  2. falko

    falko Super Moderator Howtoforge Staff

    What's the exact error message in your FTP client?
    Does your firewall allow access to port 21? Any errors in the log files in /var/log?
    What's the output of
    Code:
    netstat -tap
    ?
     
  3. weedguy

    weedguy New Member

    The error is...

    The exact error is "Login incorrect". I am using the ISPConfig firewall which shows that the FTP is online and that the firewall rule for FTP is active. I also received the very same results when I turned the firewall off. The output to netstat -tap is:

    Active Internet connections (servers and established)
    Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
    tcp 0 0 *:nfs *:* LISTEN -
    tcp 0 0 *:53640 *:* LISTEN 1523/rpc.statd
    tcp 0 0 *:809 *:* LISTEN 23525/rpc.rquotad
    tcp 0 0 *:mysql *:* LISTEN 1899/mysqld
    tcp 0 0 *:netbios-ssn *:* LISTEN 22780/smbd
    tcp 0 0 *:45452 *:* LISTEN -
    tcp 0 0 *:sunrpc *:* LISTEN 23325/portmap
    tcp 0 0 localhost.localdomain:50000 *:* LISTEN 1744/hpiod
    tcp 0 0 *:hosts2-ns *:* LISTEN 2333/ispconfig_http
    tcp 0 0 localhost.localdomain:50002 *:* LISTEN 1749/python
    tcp 0 0 *:ftp *:* LISTEN 21907/proftpd: (acc
    tcp 0 0 192.168.0.11:domain *:* LISTEN 10876/named
    tcp 0 0 192.168.0.10:domain *:* LISTEN 10876/named
    tcp 0 0 localhost.localdomai:domain *:* LISTEN 10876/named
    tcp 0 0 localhost.localdomain:ipp *:* LISTEN 1488/cupsd
    tcp 0 0 *:824 *:* LISTEN 23541/rpc.mountd
    tcp 0 0 *:smtp *:* LISTEN 22004/master
    tcp 0 0 localhost.localdomain:rndc *:* LISTEN 10876/named
    tcp 0 0 *:microsoft-ds *:* LISTEN 22780/smbd
    tcp 0 0 localhost.localdomain:54037 localhost.localdomain:50000 ESTABLISHED 1749/python
    tcp 0 0 192.168.0.10:smtp 24-176-166-104.dhcp.gv:4753 TIME_WAIT -
    tcp 0 0 localhost.localdomain:50000 localhost.localdomain:54037 ESTABLISHED 1744/hpiod
    tcp 0 0 localhost.localdomain:smtp localhost.localdomain:46934 TIME_WAIT -
    tcp 0 0 *:imaps *:* LISTEN 1927/dovecot
    tcp 0 0 *:pop3s *:* LISTEN 1927/dovecot
    tcp 0 0 *:pop3 *:* LISTEN 1927/dovecot
    tcp 0 0 *:imap *:* LISTEN 1927/dovecot
    tcp 0 0 *:http *:* LISTEN 7278/httpd
    tcp 0 0 *:ssh *:* LISTEN 1790/sshd
    tcp 0 0 localhost:rndc *:* LISTEN 10876/named
    tcp 0 0 *:https *:* LISTEN 7278/httpd
    tcp 0 144 ::ffff:192.168.0.10:ssh ::ffff:192.168.0.100:42447 ESTABLISHED 6206/sshd: charles

    There is no error file in /var/log/proftpd.
     
    Last edited: Apr 25, 2006
  4. falko

    falko Super Moderator Howtoforge Staff

    What's in /var/log/auth.log and /var/log/syslog?
    What's in /etc/proftpd.conf?
    What's in /etc/shells?
     
  5. weedguy

    weedguy New Member

    The files contain...

    There are no files named /var/log/auth.log and /var/log/syslog.
    The file /etc/proftpd.conf contains (stripped of comments):

    Code:
    ServerName                      "ProFTPD server"
    ServerIdent                     on "FTP Server ready."
    ServerAdmin                     root@localhost
    ServerType                      standalone
    #ServerType                     inetd
    DefaultServer                   on
    AccessGrantMsg                  "User %u logged in."
    #DisplayConnect                 /etc/ftpissue
    #DisplayLogin                   /etc/ftpmotd
    #DisplayGoAway                  /etc/ftpgoaway
    DeferWelcome                    off
    
    DefaultRoot                     ~ !adm
    
    AuthPAMConfig                   proftpd
    AuthOrder                       mod_auth_pam.c* mod_auth_unix.c
    
    IdentLookups                    off
    UseReverseDNS                   off
    
    Port                            21
    
    Umask                           022
    
    ListOptions                     "-a"
    
    AllowRetrieveRestart            on
    AllowStoreRestart               on
    
    MaxInstances                    20
    
    User                            nobody
    Group                           nobody
    
    ScoreboardFile                  /var/run/proftpd.score
    
    <Global>
      AllowOverwrite                yes
      <Limit ALL SITE_CHMOD>
        AllowAll
      </Limit>
    </Global>
    
    LogFormat                       default "%h %l %u %t \"%r\" %s %b"
    LogFormat                       auth    "%v [%P] %h %t \"%r\" %s"
    
    DefaultRoot ~
    
    Include /etc/proftpd_ispconfig.conf
    The file /etc/proftpd_ispconfig.conf contains:

    Code:
    <VirtualHost 192.168.0.10>
            DefaultRoot             ~
            AllowOverwrite          on
            Umask                   002
            <Anonymous /var/www/web6/ftp>
              User                          web6_anonftp
              Group                         web6_anonftp
              UserAlias                     anonymous web6_anonftp
              UserAlias                     guest web6_anonftp
              MaxClients                    10
              <Directory *>
                <Limit WRITE>
                  DenyAll
                </Limit>
              </Directory>
              <Directory /var/www/web6/ftp/incoming>
                Umask                       002
                <Limit STOR>
                  AllowAll
                </Limit>
                <Limit READ>
                  DenyAll
                </Limit>
              </Directory>
            </Anonymous>
    </VirtualHost>
    <VirtualHost 192.168.0.11>
            DefaultRoot             ~
            AllowOverwrite          on
            Umask                   002
    </VirtualHost>
    The file /etc/shells contains:

    Code:
    /bin/sh
    /bin/bash
    /sbin/nologin
    /bin/tcsh
    /bin/csh
    /bin/ksh
    /bin/false
    /SENDMAIL/ANY/SHELL/
    
     
  6. falko

    falko Super Moderator Howtoforge Staff

    What happens if you comment out these two lines in /etc/proftpd.conf?

    Code:
    #DefaultRoot ~
    
    #Include /etc/proftpd_ispconfig.conf
    Then restart Proftpd.
     
  7. weedguy

    weedguy New Member

    Problem solved!

    I commented out the two lines and restarted the FTP server (using the ISPConfig services). I tried loggin into FTP using a teriminal from a networked computer and it worked perfectly. Just to be sure I also logged in using the Web-FTP interface and it also worked perfectly.

    Thanks very much for your help. However, I was wondering, do you happen to know if this problem was the result of me doing something wrong (or different) when I installed Fedora or ISPConfig? When I installed Fedora Core 5, I used all of the default settings offered by the Fedora installer -- except that I disabled the firewall and SELinux. I also selected the office packages with the development and servers. Finally, I used the gui update manager to update all of the software and then I used the gui package manager to install KDE before I installed ISPConfig.
     
  8. falko

    falko Super Moderator Howtoforge Staff

    Maybe the problem was that you had the DefaultRoot directive twice in proftpd.conf... :confused:
     
  9. netserpent

    netserpent New Member

    no

    it`s problem in /etc/proftpd_ispconfig.conf
    Need comment or delete DefaultAddress 127.0.0.1
     
  10. falko

    falko Super Moderator Howtoforge Staff

    This directive is new in ISPConfig 2.2.5. weedguy doesn't have this directive.
     
  11. netserpent

    netserpent New Member

    hm

    :) but this resolve problem for me. i have 2.2.5 version. And in 2.2.3 i haven`t this problem. It was start only after upgrate ISPConfig.
     
    Last edited: Jul 19, 2006
  12. falko

    falko Super Moderator Howtoforge Staff

    In my tests DefaultAddress worked fine for me...
     
  13. netserpent

    netserpent New Member

Share This Page