Untangle / VSFTPD problem

Discussion in 'Server Operation' started by gacain, Oct 17, 2009.

  1. gacain

    gacain New Member

    Hi,

    First, my apologies for "cross posting" this. As this may be a VSFTPD problem or it may be an Untangle problem, I've posted at both forums. Your patience is very much appreciated.

    This week I've installed a new "Untangle" router at my office. Everything is working fine except that there is difficulty connecting to my ftp server from outside. Nothing has changed except for the router - the old one was forwarding to this FTP server perfectly.

    Filezilla and IE will not connect. For some reason WinSCP is working.

    From the log of Filezilla, it appears the connection is actually being made, but it "hangs" and times out when trying to receive the file listing. I've included that log below.

    Please note that I've edited these logs and conf files to read our external IP address as 1.2.3.4 - I'm not actually using that IP.

    If anyone can shed any light on this situation, I would very much appreciate it. We are an architectural firm and have consultants with whom we very badly need to exchange data.

    Thanks in advance for any assistance.

    Greg

    FTP SERVER INFORMATION:
    DISTRIB_ID=Ubuntu
    DISTRIB_RELEASE=6.06
    DISTRIB_CODENAME=dapper
    DISTRIB_DESCRIPTION="Ubuntu 6.06.2 LTS"

    VSFTPD VERSION:
    version 2.0.4-0ubuntu4

    VSFTPD.CONF:
    anonymous_enable=NO
    local_enable=YES
    write_enable=YES
    local_umask=026
    dirmessage_enable=YES
    xferlog_enable=YES
    connect_from_port_20=YES
    xferlog_file=/var/log/vsftpd

    # DEFAULT VALUE WAS YES - CHANGED FOR DEBUG
    xferlog_std_format=NO

    # FOLLOWING SET FOR DEBUG
    log_ftp_protocol=YES

    nopriv_user=ftp
    ftpd_banner="Welcome to FTP service."
    pam_service_name=vsftpd
    background=YES
    listen=YES
    tcp_wrappers=YES
    secure_chroot_dir=/var/lib/vsftp/chroot
    chroot_local_user=YES
    dirlist_enable=YES
    dirmessage_enable=YES
    use_localtime=YES

    # CONFIGURATION FOR UNTANGLE ROUTER 2009-10-15

    pasv_enable=YES
    pasv_min_port=10000
    pasv_max_port=11000
    pasv_address=1.2.3.4


    UNTANGLE VERSION:
    Build: 7.0.0~svn20090924r24591release7.0-1lenny

    PORT FORWARD 21:
    Destined Local
    Destination Port 21
    Protocol TCP UPD
    New Destination: 192.168.254.217

    PORT FORWARD DYNAMIC PORTS:
    Destination Port 10000-11000
    Protocol: TCP UDP
    New Destination: 192.168.254.217

    FILEZILLA LOG:
    Status: Resolving address of ftp.example.com
    Status: Connecting to 1.2.3.4:21...
    Status: Connection established, waiting for welcome message...
    Response: 220 "Welcome to FTP service."
    Command: USER user
    Response: 331 Please specify the password.
    Command: PASS ********
    Response: 230 Login successful.
    Command: SYST
    Response: 215 UNIX Type: L8
    Command: FEAT
    Response: 211-Features:
    Response: EPRT
    Response: EPSV
    Response: MDTM
    Response: PASV
    Response: REST STREAM
    Response: SIZE
    Response: TVFS
    Response: 211 End
    Status: Connected
    Status: Retrieving directory listing...
    Command: PWD
    Response: 257 "/"
    Command: TYPE I
    Response: 200 Switching to Binary mode.
    Command: PASV
    Response: 227 Entering Passive Mode (1,2,3,4,208,140).
    Command: LIST
    Error: Connection timed out
    Error: Failed to retrieve directory listing
     
  2. falko

    falko Super Moderator Howtoforge Staff

    Have you tried both active and passive connections in FileZilla?
     
  3. gacain

    gacain New Member

    Hi Falko,

    Thanks for your reply. Yes, I've tried active, passive and "auto".

    Any other thoughts or suggestions would be much appreciated.

    Thanks again.

    Greg
     

Share This Page