LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 01-30-2005, 06:28 PM   #1
Singing Banzo
LQ Newbie
 
Registered: Jul 2004
Posts: 20

Rep: Reputation: 0
Question ProFTP problem: can login but not retrieve directory listing


Hi! I'm a newbie trying to start up a ftp server.

I have a Mandrake Linux 10 box, working as proxy without problems.

In the control center I started up the proftpd service, and in Security->Firewall I checked the box "FTP server".

Now I can connect from this machine to localhost fine, but when I try to connect from another machine (in the LAN), with a client cappable of passive mode, I get this:

-Login completed.
> PASV
< 227 Entering Passive Mode (192,168,1,1,129,174)
> TYPE A
< 200 Type set to A
> LIST
!Socket Error: no connection
- Could not retrieve directory listing for "/"
- Disconnect

(I already read From beginning to end: ProFTPD and searched over the forum)

I guess may be a problem with the iptables, but I'm not sure how to solve it. Can you help me with that? Here is iptables -L:

Code:
Chain INPUT (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
DROP      !icmp --  anywhere             anywhere            state INVALID
ppp_in     all  --  anywhere             anywhere
eth0_in    all  --  anywhere             anywhere
eth1_in    all  --  anywhere             anywhere
common     all  --  anywhere             anywhere
LOG        all  --  anywhere             anywhere            LOG level info pref
ix `Shorewall:INPUT:REJECT:'
reject     all  --  anywhere             anywhere

Chain FORWARD (policy DROP)
target     prot opt source               destination
DROP      !icmp --  anywhere             anywhere            state INVALID
ppp_fwd    all  --  anywhere             anywhere
eth0_fwd   all  --  anywhere             anywhere
eth1_fwd   all  --  anywhere             anywhere
common     all  --  anywhere             anywhere
LOG        all  --  anywhere             anywhere            LOG level info pref
ix `Shorewall:FORWARD:REJECT:'
reject     all  --  anywhere             anywhere

Chain OUTPUT (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere
DROP      !icmp --  anywhere             anywhere            state INVALID
fw2net     all  --  anywhere             anywhere
all2all    all  --  anywhere             anywhere
all2all    all  --  anywhere             anywhere
common     all  --  anywhere             anywhere
LOG        all  --  anywhere             anywhere            LOG level info pref
ix `Shorewall:OUTPUT:REJECT:'
reject     all  --  anywhere             anywhere

Chain all2all (3 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTAB
LISHED
newnotsyn  tcp  --  anywhere             anywhere            state NEW tcp flags
:!SYN,RST,ACK/SYN
common     all  --  anywhere             anywhere
LOG        all  --  anywhere             anywhere            LOG level info pref
ix `Shorewall:all2all:REJECT:'
reject     all  --  anywhere             anywhere

Chain common (5 references)
target     prot opt source               destination
icmpdef    icmp --  anywhere             anywhere
reject     udp  --  anywhere             anywhere            udp dpt:135
reject     udp  --  anywhere             anywhere            udp dpts:netbios-ns
:netbios-ssn
reject     udp  --  anywhere             anywhere            udp dpt:microsoft-d
s
reject     tcp  --  anywhere             anywhere            tcp dpt:netbios-ssn

reject     tcp  --  anywhere             anywhere            tcp dpt:microsoft-d
s
reject     tcp  --  anywhere             anywhere            tcp dpt:135
DROP       udp  --  anywhere             anywhere            udp dpt:1900
DROP       all  --  anywhere             255.255.255.255
DROP       all  --  anywhere             BASE-ADDRESS.MCAST.NET/4
reject     tcp  --  anywhere             anywhere            tcp dpt:auth
DROP       udp  --  anywhere             anywhere            udp spt:domain stat
e NEW

Chain dynamic (6 references)
target     prot opt source               destination

Chain eth0_fwd (1 references)
target     prot opt source               destination
dynamic    all  --  anywhere             anywhere            state NEW
loc2net    all  --  anywhere             anywhere
ACCEPT     all  --  anywhere             anywhere

Chain eth0_in (1 references)
target     prot opt source               destination
dynamic    all  --  anywhere             anywhere            state NEW
loc2fw     all  --  anywhere             anywhere

Chain eth1_fwd (1 references)
target     prot opt source               destination
dynamic    all  --  anywhere             anywhere            state NEW
loc2net    all  --  anywhere             anywhere
ACCEPT     all  --  anywhere             anywhere

Chain eth1_in (1 references)
target     prot opt source               destination
dynamic    all  --  anywhere             anywhere            state NEW
loc2fw     all  --  anywhere             anywhere

Chain fw2net (1 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTAB
LISHED
newnotsyn  tcp  --  anywhere             anywhere            state NEW tcp flags
:!SYN,RST,ACK/SYN
ACCEPT     tcp  --  anywhere             anywhere            state NEW tcp dpt:h
ttp
ACCEPT     all  --  anywhere             anywhere

Chain icmpdef (1 references)
target     prot opt source               destination

Chain loc2fw (2 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTAB
LISHED
newnotsyn  tcp  --  anywhere             anywhere            state NEW tcp flags
:!SYN,RST,ACK/SYN
ACCEPT     tcp  --  anywhere             anywhere            multiport dports ft
p-data,ftp state NEW
ACCEPT     icmp --  anywhere             anywhere            icmp echo-request
ACCEPT     tcp  --  anywhere             anywhere            state NEW tcp dpt:s
quid
all2all    all  --  anywhere             anywhere

Chain loc2net (2 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTAB
LISHED
newnotsyn  tcp  --  anywhere             anywhere            state NEW tcp flags
:!SYN,RST,ACK/SYN
ACCEPT     all  --  anywhere             anywhere

Chain net2all (3 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTAB
LISHED
newnotsyn  tcp  --  anywhere             anywhere            state NEW tcp flags
:!SYN,RST,ACK/SYN
common     all  --  anywhere             anywhere
LOG        all  --  anywhere             anywhere            LOG level info pref
ix `Shorewall:net2all:DROP:'
DROP       all  --  anywhere             anywhere

Chain net2fw (1 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere            state RELATED,ESTAB
LISHED
newnotsyn  tcp  --  anywhere             anywhere            state NEW tcp flags
:!SYN,RST,ACK/SYN
ACCEPT     tcp  --  anywhere             anywhere            multiport dports ft
p-data,ftp state NEW
ACCEPT     icmp --  anywhere             anywhere            icmp echo-request
net2all    all  --  anywhere             anywhere

Chain newnotsyn (6 references)
target     prot opt source               destination
LOG        all  --  anywhere             anywhere            LOG level info pref
ix `Shorewall:newnotsyn:DROP:'
DROP       all  --  anywhere             anywhere

Chain ppp_fwd (1 references)
target     prot opt source               destination
dynamic    all  --  anywhere             anywhere            state NEW
net2all    all  --  anywhere             anywhere
net2all    all  --  anywhere             anywhere

Chain ppp_in (1 references)
target     prot opt source               destination
dynamic    all  --  anywhere             anywhere            state NEW
net2fw     all  --  anywhere             anywhere

Chain reject (11 references)
target     prot opt source               destination
REJECT     tcp  --  anywhere             anywhere            reject-with tcp-res                et
REJECT     udp  --  anywhere             anywhere            reject-with icmp-po                rt-unreachable
REJECT     icmp --  anywhere             anywhere            reject-with icmp-ho                st-unreachable
REJECT     all  --  anywhere             anywhere            reject-with icmp-ho                st-prohibited

Chain shorewall (0 references)
target     prot opt source               destination
Thanks.

Last edited by Singing Banzo; 01-30-2005 at 06:34 PM.
 
Old 01-31-2005, 05:14 PM   #2
Singing Banzo
LQ Newbie
 
Registered: Jul 2004
Posts: 20

Original Poster
Rep: Reputation: 0
anyone?
 
Old 03-15-2005, 05:44 PM   #3
pjbgravely
Member
 
Registered: Mar 2004
Location: USA
Distribution: Aptosid, Ubuntu server, DSL
Posts: 53

Rep: Reputation: 16
I have the same problem except none of my clients give an error, they just show nothing, and the logs just show a time out. I thought mine might be a firewall problem but so far nothing found. Running ProFTPD 1.210 on Slackware 10.1 running as stand alone deamon. I am configureing with WEbmin, but the config file looks fine.

Have you figured out yours yet?

Paul
 
Old 03-15-2005, 06:39 PM   #4
pjbgravely
Member
 
Registered: Mar 2004
Location: USA
Distribution: Aptosid, Ubuntu server, DSL
Posts: 53

Rep: Reputation: 16
I figured mine out, I had to open incoming TCP ports 1024-1423 to get it to work. I don't have any idea why so I will have to do some more learning. I can't tell from your tables if you have anything open at all. Now to figure out how to get my login to see everything. I found my problem on this thread

Paul
 
Old 03-23-2005, 12:11 PM   #5
mbryner
LQ Newbie
 
Registered: Jun 2004
Location: Southern Oregon
Distribution: Mandriva 2006
Posts: 13

Rep: Reputation: 0
Thanks, I think you just solved my problem as well. I was able to FTP to my server from win98 box and Mac Powerbook on LAN just fine, but Linux notebook also on LAN is unable to get "ls" either active or passive mode.

Marcus
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to retrieve original chmod of my home directory? jogurt666 Linux - General 3 06-07-2006 08:36 PM
Apache Directory Listing Of NFS Mount, cannot view directory list via apache luqmana Linux - Networking 2 12-19-2005 06:03 AM
HELP: PERL script to retrieve file listing xboxter Programming 2 05-19-2005 09:19 AM
Allow ProFTP login but prevent local login? sorrodos Linux - Networking 2 06-23-2004 01:56 PM
Directory Listing mattbeekler Linux - Software 8 07-22-2003 02:27 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 08:29 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration