Re: ftp?

To: Marc-Adrian Napoli <marcadrian@cia.com.au>, debian-isp@lists.debian.org
Subject: Re: ftp?
From: Tech Support <support@elbnet.com>
Date: Sun, 07 Jan 2001 19:27:36 -0500
Message-id: <[🔎] 3A590978.AAF9298F@elbnet.com>
References: <[🔎] 004401c078ff$a2bd9160$88db3fcb@cia.com.au>

Marc-Adrian Napoli wrote:
> 
> hi,
> 
> have a wierd problem here. we have standard debian box here running wuftp,
> as well as an NT box with iis 5.0. (and ftp)
> 
> a particular customer sitting behind a NAT'd firewall cant connect to our
> debian wuftp server, but has no problem with the NT box.
> 
> ive allowed their specific class C range access in hosts.allow and i can ftp
> into the box with their account no problems.
> 
> the customer gets an FTP connection but no prompt for username and password,
> has anyone seen this before?
> 

   This is a fairly common problem with trying to run FTP through a
firewall. FTP creates two connections: an outbound connection and a
return connection. 

  The outbound conection is easy: from the clients unprivledged ports to
the server port 21 and back.
 The return connection is a problem. You have to allow *anyone* to
connect to your port 20.

  The reason that you do not get a login prompt is that the firewall is
rejecting the inbound connection.

 Often you can get around this problem by using passive mode FTP (which
is probably why they can connect to the M$ box) which connects to one of
your unprivledged ports instead of 20.

Another way around the problem if your client doesn't want to mess with
their firewall is to offer HTTP based FTP.

Pete

Reply to:

Follow-Ups:
- Re: ftp?
  - From: "Marc-Adrian Napoli" <marcadrian@cia.com.au>

References:
- ftp?
  - From: "Marc-Adrian Napoli" <marcadrian@cia.com.au>

Prev by Date: Re: ftp?
Next by Date: Re: ftp?
Previous by thread: Re: ftp?
Next by thread: Re: ftp?
Index(es):
- Date
- Thread