Re: ftping through a router

To: Robert Rati <ratirh@cs.purdue.edu>
Cc: debian-user@lists.debian.org
Subject: Re: ftping through a router
From: Steve George <steve@blah.dircon.co.uk>
Date: Sun, 27 Jun 1999 13:03:00 +0100
Message-id: <[🔎] 19990627130300.A11910@free.blah.dircon.co.uk>
In-reply-to: <[🔎] Pine.GSO.4.10.9906262356140.29459-100000@lore.cs.purdue.edu>; from Robert Rati on Sun, Jun 27, 1999 at 12:00:40AM -0500
References: <[🔎] Pine.GSO.4.10.9906262356140.29459-100000@lore.cs.purdue.edu>

Hi Rob,

FTP is a difficult protocol in that it uses two channels/connections.  The first one is the command channel which is the one you, the client, makes when it connects to the FTP server.  The second is the data channel which the server makes BACK to the client when any data, such as a file or directory listing, is requested.  The server connects from any port >1023 to the client on port 20, ftp-data.

I guess that you used ipfwadm/ipchains to set your box as a router.  What's probably happening is that you have blocked the incoming connection from the ftp server.  To solve this you can either change your ip rules or try and use the passive (pasv) form of ftp where the server tells the client the port to connect to and the client then does the connection: note that some windows FTP clients can't do this commonly the dos box ones can't.

Finally, if security is your concern you could use an ftp proxy such as the ones in the TIS Firewall toolkit.

HTH,

Steve

On Sun, Jun 27, 1999 at 12:00:40AM -0500, Robert Rati wrote:
> I setup a router for a home network, and everything seems to work fine but
> one thing.  I can't use ftp.  I can connection to sites outside my network
> via ftp, but I can't do the ls command.  Usually, when you do a lsc,
> you get something back like:
> 
> 200 Port Command
> 
> or something like that, but instead, I get:
> 
> 500 Illegal PORT Command
> 
> I can cd and pwd, but can't get a file listing.  Do I have to do some kid
> of port redirection or something on the router?  I can't tell whether I
> can send or recieve files since I can't get dir listings.  Does anyone
> have any info on this?  Thanks.
> 
> 								Rob
> 
> =======================================================================
> ratirh@lore.cs.purdue.edu : Role-Player, Babylon 5 fanatic      1998-99
> Aka Khyron the Backstabber : ICQ# 2325055
> Homepage: www.cs.purdue.edu/homes/ratirh 
> 
> "Happiness comes in short spurts.  Don't be fooled."
> =======================================================================
> 
> 
> -- 
> Unsubscribe?  mail -s unsubscribe debian-user-request@lists.debian.org < /dev/null
>

Reply to:

Follow-Ups:
- Re: ftping through a router
  - From: Michael Talbot-Wilson <mtw@birdseye.view.net.au>

References:
- ftping through a router
  - From: Robert Rati <ratirh@cs.purdue.edu>

Prev by Date: Re: how to burn CD with IDE/ATAPI CD-RW burner?
Next by Date: openssl
Previous by thread: ftping through a router
Next by thread: Re: ftping through a router
Index(es):
- Date
- Thread