Date: Thu, 14 Jun 2001 21:06:38 +0200 From: "Karsten W. Rohrbach" <karsten@rohrbach.de> To: Crist Clark <crist.clark@globalstar.com> Cc: Marcel Dijk <nascar24@home.nl>, Evren Yurtesen <yurtesen@ispro.net.tr>, "Antoine Beaupre (LMC)" <Antoine.Beaupre@ericsson.ca>, "Thomas T. Veldhouse" <veldy@veldy.net>, Jason DiCioccio <Jason.DiCioccio@Epylon.com>, freebsd-security@FreeBSD.ORG Subject: Re: IPFW almost works now. Message-ID: <20010614210638.F49807@mail.webmonster.de> In-Reply-To: <3B27D344.82AEDED0@globalstar.com>; from crist.clark@globalstar.com on Wed, Jun 13, 2001 at 01:55:32PM -0700 References: <Pine.BSF.4.33.0106130001350.63354-100000@finland.ispro.net.tr> <3B2698EF.BD7EF0DB@globalstar.com> <02a201c0f415$4dad56b0$0900a8c0@windows> <3B27D344.82AEDED0@globalstar.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--9/eUdp+dLtKXvemk Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Crist Clark(crist.clark@globalstar.com)@2001.06.13 13:55:32 +0000: > Marcel Dijk wrote: > >=20 > > > To the original poster, also keep in mind that firewalls at the other > > > end of your connection could be making trouble for you too. You can u= se > > > tcpdump(8) and firewall logging to see if traffic is getting to your > > > FTP server at all. > > > -- > > > Crist J. Clark Network Security Engine= er > > > crist.clark@globalstar.com Globalstar, L.P. > > > (408) 933-4387 FAX: (408) 933-4926 > >=20 > > Traffic IS getting to the FTP server, because I can login. The thing is= when > > I have logged in and the client sends the LIST command it can't read the > > directory and closes the connection. As discribed here: > >=20 > > _______________________________________ > > Can't build data connection: interrupted system call. > > ABOR command succesfull. > > Connection Lost > > _______________________________________ > >=20 > > So, connection TO the server seems to work but when the server tries to= SEND > > traffic to the client it fails. >=20 > I realize that you are having no problem with your _control_ connection, > your data connection is failing. I was interested in tcpdump(8) to make > sure that the incoming data connection was actually making it to your > server, or just to see what the heck was up with the data connection. ipfilter's protocol dependend stateful filtering could do serous magic here... /k --=20 > "I didn't change a thing and from the moment I didn't change it, > it didn't work anymore." --Anonymous KR433/KR11-RIPE -- WebMonster Community Founder -- nGENn GmbH Senior Techie http://www.webmonster.de/ -- ftp://ftp.webmonster.de/ -- http://www.ngenn.n= et/ karsten&rohrbach.de -- alpha&ngenn.net -- alpha&scene.org -- catch@spam.de GnuPG 0x2964BF46 2001-03-15 42F9 9FFF 50D4 2F38 DBEE DF22 3340 4F4E 2964 B= F46 --9/eUdp+dLtKXvemk Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7KQs+M0BPTilkv0YRAneHAJ4k/bNTCXHPvXP4ey4bQCaLCd03CACgnor6 RD0MY/J/jIREuShWVr9QSSk= =iReI -----END PGP SIGNATURE----- --9/eUdp+dLtKXvemk-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010614210638.F49807>