Questions regarding external IP & port forwarding
 

Hello all.
I've set up an ftp server using vsftpd and on my cable connection at home I'm able to find my IP address no problem and ftp in from anywhere. The issue is when I bring the server into work, I use one of those ip lookup websites and I can't log in using the ip that is provided. It is a DSL connection though a westell 327W router. I've set up port forwarding to the server's IP on port 21 and pasv 50000 to 60000. I try ftp'ing from the command line and am immediately denied. From what I can tell, I'm not even hitting the router. If I do a geographic search on the web for the ip address, it shows that it's 30 miles away from the actual location. I'm still pretty new to networking, but I'd appreciate any information.
I've read about DMZ, NIS, DNS, port forwarding, bridge ip, etc.. I'm lost here and could use some help.
-Derek

can you ftp to and from the server from a client that is on the LAN?

-twantrd

I am able to connect on the LAN, see my files and transfer them. I just don't know my external ip address in order to test it out (externally that is).

Well, your external IP should be on the router on the WAN interface. If you can't find out, then have one of your LAN machines go to page http://www.whatismyip.com/.

-twantrd

That is exactly what I did. I went to whatismyip.com, then I went to ip2location.com and it showed that my ip was 30 miles from my house. Does that mean anything or do you think that's normal and I'm just having issues with my router? I've used the same settings as my router at home (obviously with a different ip address).
In addition to that, I opened up telnet and ftp w/ port forwarding, temporarily disabled firewall to test things out and when I try to connect my connection is immediately refused.
-D
(btw, I'm using Verizon DSL and I've read a few things about them blocking ftp and doing other strange things. Any ideas about that?)

Wouldn't hurt to call Verizon and see what they do block. But, I would assume that all ports would be open if it was business class DSL. I wouldn't stress out too much about ip2location. Who knows what geo-ip database they are using. Some free ones out there update theirs monthly while paid ones update weekly. It's a matter of how often they update it and how accurate they are.

Does the firewall come with any logging capabilities. That's another thing you can check out.

-twantrd

I called them last week and the help desk wasn't any help; go figure. They said I'd have to call the "expert help", of course at an expensive rate. I had hoped to avoid this, but I guess I don't have any other choice.
Thanks for the help though.