LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (http://www.linuxquestions.org/questions/linux-networking-3/)
-   -   425 - failed to establish connection with vsftp and the firewall on (http://www.linuxquestions.org/questions/linux-networking-3/425-failed-to-establish-connection-with-vsftp-and-the-firewall-on-572205/)

brucerowe 07-25-2007 12:49 PM

425 - failed to establish connection with vsftp and the firewall on
 
I have a Suse 10.1 box and turned on the firewall. For ftp service, I am using vsftp. I have ports 20 and 21 open. I am allowing the following services:
HTTP service
Mail server
MySQL remote access
SSH

When the firewall is running, ftp will not work with either Firefox or the Opera browsers. Anyone trying to access the site gets a message, "425 - failed to establish connection."

The interesting part is that WS_ftp works fine. IE works fine.

When I turn off the firewall, the ftp site works fine with all browsers.

Does anyone know what the problem is or how to fix it?

Thanks in advance,

Bruce

bakfupai 07-25-2007 01:56 PM

It's likely that this is a problem with passive ports. Take a look here:
http://vsftpd.beasts.org/vsftpd_conf.html

You see there is an option to specify the minimum and maximum port that passive transfers uses. So you can for example specify vsftpd to use port range 40000-40500 and then you can open those ports in the firewall and I'm pretty sure your problem will go away.

nx5000 07-25-2007 04:05 PM

Have a look at this for how ftp works:
http://slacksite.com/other/ftp.html

And how to implement it properly (link found using the search of LQ)
http://kalamazoolinux.org/presentati...conntrack.html

win32sux 07-26-2007 12:32 PM

Moved: This thread is more suitable in Linux - Networking and has been moved accordingly to help your thread/question get the exposure it deserves.

lynxpawan 02-07-2012 12:28 AM

425 failed to establish connection
 
"425 failed to establish connection"

If you facing this error at login. simply add the "default" FTP port (21/TCP) given in system firewall, Apply this and restart Iptables. And here you will get the data access threw port 21.
if you have already added both 20 and 21 ports threw "other ports" tab in system firewall, then also you have to add this default port in firewall.

To see Example open this link.

http://www.flickr.com/photos/pawan20...ream/lightbox/


All times are GMT -5. The time now is 05:08 PM.