Thread: FTP not working from Linux clients
View Single Post
  #5 (permalink)  
Old 2007-08-09
drhex2000 drhex2000 is offline
Junior Member
  
Join Date: 2007-08-08
Posts: 22
Rep Power: 0
drhex2000 has an average reputation (10+)
Default Re: FTP not working from Linux clients
Hi Danny,

please find the requested output below:

[Expert@optaukcp01]# fw monitor -e 'accept((src=63.245.208.138) or (dst=63.245.208.138));'
monitor: getting filter (from command line)
monitor: compiling
monitorfilter:
Compiled OK.
monitor: loading
monitor: monitoring (control-C to stop)
eth0:i[60]: 172.17.143.12 -> 63.245.208.138 (TCP) len=60 id=2978
TCP: 32904 -> 21 .S.... seq=b287b37b ack=00000000
eth0:O[52]: 63.245.208.138 -> 172.17.143.12 (TCP) len=52 id=0
TCP: 21 -> 32904 .S..A. seq=217d5d26 ack=b287b37c
eth0:i[40]: 172.17.143.12 -> 63.245.208.138 (TCP) len=40 id=2980
TCP: 32904 -> 21 ....A. seq=b287b37c ack=217d5d27
eth0:O[108]: 63.245.208.138 -> 172.17.143.12 (TCP) len=108 id=3600
TCP: 21 -> 32904 ...PA. seq=217d5d27 ack=b287b37c
eth0:i[40]: 172.17.143.12 -> 63.245.208.138 (TCP) len=40 id=2982
TCP: 32904 -> 21 ....A. seq=b287b37c ack=217d5d6b
eth0:i[53]: 172.17.143.12 -> 63.245.208.138 (TCP) len=53 id=2984
TCP: 32904 -> 21 ...PA. seq=b287b37c ack=217d5d6b
eth0:O[40]: 63.245.208.138 -> 172.17.143.12 (TCP) len=40 id=3601
TCP: 21 -> 32904 ....A. seq=217d5d6b ack=b287b389
eth0:O[40]: 63.245.208.138 -> 172.17.143.12 (TCP) len=40 id=3602
TCP: 21 -> 32904 F...A. seq=217d5d6b ack=b287b389
eth0:i[40]: 172.17.143.12 -> 63.245.208.138 (TCP) len=40 id=2986
TCP: 32904 -> 21 F...A. seq=b287b389 ack=217d5d6c
eth0:O[40]: 63.245.208.138 -> 172.17.143.12 (TCP) len=40 id=3603
TCP: 21 -> 32904 ....A. seq=217d5d6c ack=b287b38a
monitor: caught sig 2
monitor: unloading

Again, I do not even get to connect, Secure FTP Server is dropping the connection on the first Auth or SYST sent...

Here's an exmple with AUTH:
[root@devmdbb bin]# ftp -d ftp.mozilla.org 21
Connected to manna.mozilla.org.
220 Check Point FireWall-1 Secure FTP server running on optaukcp01
---> AUTH GSSAPI
421 Service not available, remote server has closed connection
---> AUTH KERBEROS_V4
No control connection for command: Illegal seek
KERBEROS_V4 rejected as an authentication type
Name (ftp.mozilla.org:root): anonymous
---> USER anonymous
No control connection for command: No such file or directory
Login failed.
---> SYST
No control connection for command: No such file or directory
ftp> bye
[root@devmdbb bin]#

Example without AUTH:
[root@devmdbb bin]# ftp -d -u ftp.mozilla.org 21
Connected to manna.mozilla.org.
220 Check Point FireWall-1 Secure FTP server running on optaukcp01
---> SYST
421 Service not available, remote server has closed connection
ftp> bye

Example from Win:
C:\Users\florian>ftp -d ftp.mozilla.org
Verbindung mit manna.mozilla.org wurde hergestellt.
220 Check Point FireWall-1 Secure FTP server running on optaukcp01
Benutzer (manna.mozilla.org:(none)): anonymous
---> USER anonymous
331 (not authenticated): Enter server password
Kennwort:
---> PASS florian@
230-Connected to server. Logging in...
230-220 (vsFTPd 2.0.1)
230-331 Please specify the password.
230 230 Login successful.
ftp> ls
---> PORT 172,17,142,146,223,164
200 PORT command successful. Consider using PASV.
---> NLST
150 Here comes the directory listing.
pub
226 Directory send OK.
FTP: 5 Bytes empfangen in 0,00Sekunden 2,50KB/s
ftp> bye
---> QUIT
221 Goodbye.

So this is related to the secure server in my humble opinion - but I know way to little about CP to make a call on it...

Thanks for looking into this,

Florian
Reply With Quote