LinuxQuestions.org - Can I get to my ftp from WAN

- Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)

- - Can I get to my ftp from WAN (https://www.linuxquestions.org/questions/linux-networking-3/can-i-get-to-my-ftp-from-wan-217113/)

rogk	08-13-2004 08:12 AM

Can I get to my ftp-server from WAN

My ISP (local phone company) rules include that I can't build up own server to used from WAN. I use it now only in LAN. I have tried to connect to ftp-server from "outside", but the server doesn't showed from "outside". I found site www.dyndns.org. Is it possible that they could help me in this thing or do i have to change ISP?

bruj3w

08-13-2004 08:33 AM

dyndns will only map a domain name to your ip, so no it wont help you.
you probably can have your own server running, though dont quote me on that.

flush all iptables rules, if you have any, with iptables -F
then issue the command : iptables -A input -p tcp -dport 20:21 -j ACCEPT
this will open both the control and data ports that ftp uses.

then fire up your ftp deamon, if it isnt already running and try connect from an external address.

good luck.

jymbo

08-13-2004 08:40 AM

You can work around this by running your ftp on a different port. For instance...this is what I use:

FTP server listens on: port 6531 (looks like PCAnywhere)
Passive connections: port 6532-6534

...then I just configure my router to open and forward ports 6531-6534 to my ftp server. If your FTP server is not behind a router, then just make sure ports 6531-6534 are open on that machine.

arno	08-13-2004 09:24 AM

Does your ftp server have a private (192.168..,172.16..,10...) or a public ip adress
Is your firewall blocking port 21 ?

A isp could use a firewall to block certain port/

PS never post your public ip addres

rogk	08-13-2004 10:44 AM

I have router (Zyxel Prestige 324) and my ftp server have a private IP. The isp maybe blocking the port i'm not sure. I have to find out it.
I have configured router like this: Sua server - ftp -start port = 20 - End port = 21 - Sever IP-address = 192.168.1.5

arno	08-13-2004 05:20 PM

You have to setup iptables to nat your ftp server

rogk	08-14-2004 02:24 AM

Please, be patient. I changed the port to the /etc/proftpd.conf . I put there port 6531 and same time i changed routers ftp start port 6531 and end port 6534. But when I changed proftpd.conf port to 6531, i can't get to ftp even private ip-address.
When I'll get to the ftp with private ip-address and I'll try with public ip there comes prompt "530 User jack cannot log in".
I tried to find "iptables" with command line, no answer. I even set the firewall of from the control center. I have done many things and now i'm confused.
It's more interesting to get the ftp working from WAN before studing those security things.
:newbie:

All times are GMT -5. The time now is 09:55 AM.