Hello After upgrade from 9.10 to 10.04 I try to aptitude upgrade and have following log: Code: The following packages have unmet dependencies: linux-restricted-modules-2.6.27-17-server: Depends: linux-restricted-modules-c linux-restricted-modules-2.6.28-18-server: Depends: linux-restricted-modules-c I can aptitude -f install but have this log: Code: root@itex:~# aptitude -f install Reading package lists... Done Building dependency tree Reading state information... Done Reading extended state information Initializing package states... Done The following packages are BROKEN: libdate-manip-perl linux-restricted-modules-2.6.27-17-server linux-restricted-modules-2.6.28-18-server The following NEW packages will be installed: libnet-snmp-perl librrd4 librrds-perl rrdtool The following packages will be REMOVED: autoconf2.13{u} automake1.4{u} binutils-static{u} bsd-mailx{u} libbind9-50{u} libc-client2007b{u} libcompress-bzip2-perl{u} libdjvulibre-text{u} libdjvulibre21{u} libdns53{u} libgraphviz4{u} libilmbase6{u} libisc50{u} libisccc50{u} libisccfg50{u} liblwres50{u} libmhash2{u} libming0{u} libntfs-3g54{u} libopenexr6{u} libsensors3{u} libwmf0.2-7{u} 0 packages upgraded, 5 newly installed, 22 to remove and 0 not upgraded. Need to get 3,152kB of archives. After unpacking 1,561kB will be used. The following packages have unmet dependencies: linux-restricted-modules-2.6.27-17-server: Depends: linux-restricted-modules-common which is a virtual package. linux-restricted-modules-2.6.28-18-server: Depends: linux-restricted-modules-common which is a virtual package. libdate-manip-perl: Depends: libyaml-syck-perl but it is not installable The following actions will resolve these dependencies: Remove the following packages: linux-restricted-modules-2.6.27-17-server linux-restricted-modules-2.6.28-18-server Keep the following packages at their current version: libdate-manip-perl [Not Installed] Score is 257 Accept this solution? [Y/n/q/?] q If I aptitude -f install after that all be ok with ISPConfig2 and my server? Thnk you!
Yes its ok. But after ISPConfig upgrade and dist upgrade web-ftp in ISPConfig dont work. Simple FTP work only in active mode. How to decide this problem? And in kern.log have this: Code: Jun 27 06:57:28 itex kernel: [459924.717658] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.133958] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.134240] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.134519] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.134789] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.135079] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.135358] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.135640] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.135921] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.136194] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.136469] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.137778] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.138077] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.138357] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.138636] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.138936] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.139210] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.139480] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.139763] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.140039] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.140327] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.141578] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.141876] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Jun 27 07:26:49 itex kernel: [461685.142161] [drm] nouveau 0000:01:00.0: PFIFO_INTR 0x00000010 - Ch 1 Thnk you for help!
Output is: Code: root@itex:~# iptables -L Chain INPUT (policy DROP) target prot opt source destination DROP tcp -- anywhere loopback/8 ACCEPT all -- anywhere anywhere state RELATED,ESTAB LISHED ACCEPT all -- anywhere anywhere DROP all -- BASE-ADDRESS.MCAST.NET/4 anywhere PUB_IN all -- anywhere anywhere PUB_IN all -- anywhere anywhere PUB_IN all -- anywhere anywhere PUB_IN all -- anywhere anywhere DROP all -- anywhere anywhere Chain FORWARD (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere state RELATED,ESTAB LISHED DROP all -- anywhere anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination PUB_OUT all -- anywhere anywhere PUB_OUT all -- anywhere anywhere PUB_OUT all -- anywhere anywhere PUB_OUT all -- anywhere anywhere Chain INT_IN (0 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere DROP all -- anywhere anywhere Chain INT_OUT (0 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere ACCEPT all -- anywhere anywhere Chain PAROLE (10 references) target prot opt source destination ACCEPT all -- anywhere anywhere Chain PUB_IN (4 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere icmp destination-un reachable ACCEPT icmp -- anywhere anywhere icmp echo-reply ACCEPT icmp -- anywhere anywhere icmp time-exceeded ACCEPT icmp -- anywhere anywhere icmp echo-request PAROLE tcp -- anywhere anywhere tcp dpt:ftp PAROLE tcp -- anywhere anywhere tcp dpt:ssh PAROLE tcp -- anywhere anywhere tcp dpt:smtp PAROLE tcp -- anywhere anywhere tcp dpt:domain PAROLE tcp -- anywhere anywhere tcp dpt:www PAROLE tcp -- anywhere anywhere tcp dpt:81 PAROLE tcp -- anywhere anywhere tcp dpt:pop3 PAROLE tcp -- anywhere anywhere tcp dpt:imap2 PAROLE tcp -- anywhere anywhere tcp dpt:https PAROLE tcp -- anywhere anywhere tcp dpt:webmin ACCEPT udp -- anywhere anywhere udp dpt:domain DROP icmp -- anywhere anywhere DROP all -- anywhere anywhere Chain PUB_OUT (4 references) target prot opt source destination ACCEPT all -- anywhere anywhere In router 21 port open too.
I am trying to stop IP tables with this script: Code: # iptables -X # iptables -t nat -F # iptables -t nat -X # iptables -t mangle -F # iptables -t mangle -X # iptables -P INPUT ACCEPT # iptables -P FORWARD ACCEPT # iptables -P OUTPUT ACCEPT After: Code: root@itex:/# iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination After this command I restart ISPConfig and restart Porftpd too. But problem still not decided.
Output is: Code: root@itex:~# netstat -tap Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 *:40421 *:* LISTEN 3990/portsentry tcp 0 0 *:32773 *:* LISTEN 3990/portsentry tcp 0 0 *:32774 *:* LISTEN 3990/portsentry tcp 0 0 *:31337 *:* LISTEN 3990/portsentry tcp 0 0 *:mysql *:* LISTEN 746/mysqld tcp 0 0 *:ircd *:* LISTEN 3990/portsentry tcp 0 0 *:systat *:* LISTEN 3990/portsentry tcp 0 0 *:5742 *:* LISTEN 3990/portsentry tcp 0 0 *:sunrpc *:* LISTEN 3990/portsentry tcp 0 0 *:finger *:* LISTEN 3990/portsentry tcp 0 0 *:netstat *:* LISTEN 3990/portsentry tcp 0 0 *:www *:* LISTEN 14946/apache2 tcp 0 0 *:webmin *:* LISTEN 4420/perl tcp 0 0 *:54320 *:* LISTEN 3990/portsentry tcp 0 0 *:cisco-sccp *:* LISTEN 3990/portsentry tcp 0 0 *:81 *:* LISTEN 3154/ispconfig_http tcp 0 0 *:27665 *:* LISTEN 3990/portsentry tcp 0 0 *:ingreslock *:* LISTEN 3990/portsentry tcp 0 0 *:ftp *:* LISTEN 31564/proftpd: (acc tcp 0 0 ns.domain:domain *:* LISTEN 3439/named tcp 0 0 itex.domain:domain *:* LISTEN 3439/named tcp 0 0 localhost.locald:domain *:* LISTEN 3439/named tcp 0 0 *:ssh *:* LISTEN 754/sshd tcp 0 0 *:nntp *:* LISTEN 3990/portsentry tcp 0 0 *:socks *:* LISTEN 3990/portsentry tcp 0 0 *:smtp *:* LISTEN 19711/master tcp 0 0 localhost.localdoma:953 *:* LISTEN 3439/named tcp 0 0 *:12345 *:* LISTEN 3990/portsentry tcp 0 0 *:12346 *:* LISTEN 3990/portsentry tcp 0 0 *:https *:* LISTEN 14946/apache2 tcp 0 0 *:635 *:* LISTEN 3990/portsentry tcp 0 0 *:49724 *:* LISTEN 3990/portsentry tcp 0 0 *:uucp *:* LISTEN 3990/portsentry tcp 0 0 localhost.localdo:60000 *:* LISTEN 1600/postgrey.pid - tcp 0 0 *:tcpmux *:* LISTEN 3990/portsentry tcp 0 0 *:20034 *:* LISTEN 3990/portsentry tcp 0 0 *:32771 *:* LISTEN 3990/portsentry tcp 0 0 *:32772 *:* LISTEN 3990/portsentry tcp6 0 0 [::]:pop3 [::]:* LISTEN 1894/couriertcpd tcp6 0 0 [::]:imap2 [::]:* LISTEN 1860/couriertcpd tcp6 0 0 [::]:ssh [::]:* LISTEN 754/sshd tcp6 0 0 [::]:smtp [::]:* LISTEN 19711/master tcp6 0 0 localhost:953 [::]:* LISTEN 3439/named tcp6 0 0 [::]:imaps [::]:* LISTEN 1880/couriertcpd tcp6 0 0 [::]:pop3s [::]:* LISTEN 1922/couriertcpd
Big thnks for Help Falko! Output is: Code: # # /etc/proftpd/proftpd.conf -- This is a basic ProFTPD configuration file. # To really apply changes reload proftpd after modifications. # # Includes DSO modules Include /etc/proftpd/modules.conf # Set off to disable IPv6 support which is annoying on IPv4 only boxes. UseIPv6 off # If set on you can experience a longer connection delay in many cases. IdentLookups off ServerName "FTP server" ServerType standalone DeferWelcome off MultilineRFC2228 on DefaultServer on ShowSymlinks on TimeoutNoTransfer 600 TimeoutStalled 600 TimeoutIdle 1200 DisplayLogin welcome.msg DisplayChdir .message true ListOptions "-l" DenyFilter \*.*/ UseReverseDNS off # Use this to jail all users in their homes <Global> DefaultRoot ~ IdentLookups off ServerIdent on "FTP Server ready." </Global> # Users require a valid shell listed in /etc/shells to login. # Use this directive to release that constrain. # RequireValidShell off # Port 21 is the standard FTP port. Port 21 # In some cases you have to specify passive ports range to by-pass # firewall limitations. Ephemeral ports can be used for that, but # feel free to use a more narrow range. PassivePorts 60000 60050 # If your host was NATted, this option is useful in order to # allow passive tranfers to work. You have to use your public # address and opening the passive ports used on your firewall as well. MasqueradeAddress 132.123.123.123 # This is useful for masquerading address with dynamic IPs: # refresh any configured MasqueradeAddress directives every 8 hours <IfModule mod_dynmasq.c> # DynMasqRefresh 28800 </IfModule> # To prevent DoS attacks, set the maximum number of child processes # to 30. If you need to allow more than 30 concurrent connections # at once, simply increase this value. Note that this ONLY works # in standalone mode, in inetd mode you should use an inetd server # that allows you to limit maximum number of processes per service # (such as xinetd) MaxInstances 30 # Set the user and group that the server normally runs at. User proftpd Group nogroup # Umask 022 is a good standard umask to prevent new files and dirs # (second parm) from being group and world writable. Umask 022 022 # Normally, we want files to be overwriteable. AllowOverwrite on TransferLog /var/log/proftpd/xferlog SystemLog /var/log/proftpd/proftpd.log <IfModule mod_quotatab.c> QuotaEngine off </IfModule> <IfModule mod_ratio.c> Ratios off </IfModule> # Delay engine reduces impact of the so-called Timing Attack described in # http://security.lss.hr/index.php?page=details&ID=LSS-2004-10-02 # It is on by default. <IfModule mod_delay.c> DelayEngine on </IfModule> <IfModule mod_ctrls.c> ControlsEngine off ControlsMaxClients 2 ControlsLog /var/log/proftpd/controls.log ControlsInterval 5 ControlsSocket /var/run/proftpd/proftpd.sock </IfModule> <IfModule mod_ctrls_admin.c> AdminControlsEngine off </IfModule> ############MANUAL DefaultRoot ~ ServerIdent on "FTP Server ready." DefaultAddress 192.168.123.116 Include /etc/proftpd_ispconfig.conf /etc/proftpd_ispconfig.conf Code: DefaultAddress 127.0.0.1 <VirtualHost 192.168.123.116> DefaultRoot ~ AllowOverwrite on Umask 002 </VirtualHost> <VirtualHost 123.123.123.123> DefaultRoot ~ AllowOverwrite on Umask 002 </VirtualHost> /etc/proftpd_ispconfig.conf~ Code: DefaultAddress 127.0.0.1 <VirtualHost 192.168.123.116> DefaultRoot ~ AllowOverwrite on Umask 002 </VirtualHost>
Can you comment out the Code: DefaultAddress 192.168.123.116 line in /etc/proftpd/proftpd.conf and restart ProFTPd?
What happens if you comment out the Code: Include /etc/proftpd_ispconfig.conf line in your proftpd.conf and restart ProFTPd?
Output of FileZilla in Active Mode: Code: Command: MLSD Response: 425 Unable to build data connection: Connection refused Error: Failed to retrieve directory listing And in ISPConfig Web-FTP didnt work. If I restart without this line "Include /etc/proftpd_ispconfig.conf" output after restart is: Code: root@itex:~# /etc/init.d/proftpd restart * Stopping ftp server proftpd [ OK ] * Starting ftp server proftpd itex.intechnologies.lv - 192.168.123.116:21 masquerading as 123.123.123.123 [ OK ] If with this line, output is: Code: root@itex:~# /etc/init.d/proftpd restart * Stopping ftp server proftpd [ OK ] * Starting ftp server proftpd - setting default address to 127.0.0.1 localhost.localdomain - 127.0.0.1:21 masquerading as 123.123.123.123 [ OK ] I dont but may be it is after this restartings, but my proftpd didnt works at all. In log files all looks OK. Please help.
Now works in active mode only via FileZilla. But via ISPConfig WebFTP didnt work. When I try to connect I have this error: "Could not connect to localhost "
Output is: Code: root@itex:~# netstat -tap Active Internet connections (servers and established) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 *:40421 *:* LISTEN 3990/portsentry tcp 0 0 *:32773 *:* LISTEN 3990/portsentry tcp 0 0 *:32774 *:* LISTEN 3990/portsentry tcp 0 0 *:31337 *:* LISTEN 3990/portsentry tcp 0 0 *:mysql *:* LISTEN 746/mysqld tcp 0 0 *:ircd *:* LISTEN 3990/portsentry tcp 0 0 *:systat *:* LISTEN 3990/portsentry tcp 0 0 *:5742 *:* LISTEN 3990/portsentry tcp 0 0 *:sunrpc *:* LISTEN 3990/portsentry tcp 0 0 *:finger *:* LISTEN 3990/portsentry tcp 0 0 *:netstat *:* LISTEN 3990/portsentry tcp 0 0 *:www *:* LISTEN 1783/apache2 tcp 0 0 *:webmin *:* LISTEN 4420/perl tcp 0 0 *:54320 *:* LISTEN 3990/portsentry tcp 0 0 *:cisco-sccp *:* LISTEN 3990/portsentry tcp 0 0 *:81 *:* LISTEN 1581/ispconfig_http tcp 0 0 *:27665 *:* LISTEN 3990/portsentry tcp 0 0 *:ingreslock *:* LISTEN 3990/portsentry tcp 0 0 *:ftp *:* LISTEN 29916/proftpd: (acc tcp 0 0 itex.domain:domain *:* LISTEN 1923/named tcp 0 0 localhost.locald:domain *:* LISTEN 1923/named tcp 0 0 *:ssh *:* LISTEN 754/sshd tcp 0 0 *:nntp *:* LISTEN 3990/portsentry tcp 0 0 *:socks *:* LISTEN 3990/portsentry tcp 0 0 *:smtp *:* LISTEN 30153/master tcp 0 0 localhost.localdoma:953 *:* LISTEN 1923/named tcp 0 0 *:12345 *:* LISTEN 3990/portsentry tcp 0 0 *:12346 *:* LISTEN 3990/portsentry tcp 0 0 *:https *:* LISTEN 1783/apache2 tcp 0 0 *:635 *:* LISTEN 3990/portsentry tcp 0 0 *:49724 *:* LISTEN 3990/portsentry tcp 0 0 *:uucp *:* LISTEN 3990/portsentry tcp 0 0 localhost.localdo:60000 *:* LISTEN 1600/postgrey.pid - tcp 0 0 *:tcpmux *:* LISTEN 3990/portsentry tcp 0 0 *:20034 *:* LISTEN 3990/portsentry tcp 0 0 *:32771 *:* LISTEN 3990/portsentry tcp 0 0 *:32772 *:* LISTEN 3990/portsentry