From owner-freebsd-questions@FreeBSD.ORG Sun Jul 6 16:44:40 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A229837B404 for ; Sun, 6 Jul 2003 16:44:39 -0700 (PDT) Received: from service.sh.cvut.cz (service.sh.cvut.cz [147.32.127.214]) by mx1.FreeBSD.org (Postfix) with ESMTP id F0C8543FF5 for ; Sun, 6 Jul 2003 16:44:37 -0700 (PDT) (envelope-from ahouans@sh.cvut.cz) Received: from localhost (localhost [127.0.0.1]) by service.sh.cvut.cz (Postfix) with ESMTP id ED9131B8017; Mon, 7 Jul 2003 01:44:35 +0200 (CEST) Received: from service.sh.cvut.cz ([127.0.0.1]) by localhost (service [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 12650-01; Mon, 7 Jul 2003 01:44:35 +0200 (CEST) Received: from viking (viking.sh.cvut.cz [147.32.124.181]) by service.sh.cvut.cz (Postfix) with SMTP id 4D0181B800A; Mon, 7 Jul 2003 01:44:35 +0200 (CEST) Message-ID: <003801c34418$8cb4aa20$b57c2093@sh.cvut.cz> From: "Arcadius A." To: "Ryan Thompson" , "FreeBSD Questions" References: <20030706164636.J21975-100000@ren.sasknow.com> Date: Mon, 7 Jul 2003 01:44:32 +0200 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 X-Virus-Scanned: by amavisd-new at sh.cvut.cz Subject: Re: FreeBSD FTP problem X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Jul 2003 23:44:40 -0000 ----- Original Message ----- From: "Ryan Thompson" To: "FreeBSD Questions" Sent: Monday, July 07, 2003 1:07 AM Subject: Re: FreeBSD FTP problem > > [ CC: freebsd-questions@FreeBSD.org, reply to private email ] > [ BCC: sender, kept anonymous ] > > > Hello Ryan! > > I've seen your post at: > > http://groups.google.com/groups?hl=en&lr=&ie=UTF-8&oe=UTF-8&threadm=Pi > > ne.BSF.4.10.10001272241220.56704-100000%40sasknow.com&rnum=5&prev=/gro > > ups%3Fq%3DFreeBSD%2B%2B425%2Bcan%27t%2Bbuild%2Bdata%2Bconnection:%2Bop > > eration%2Btimed%2Bout%26hl%3Den%26lr%3D%26ie%3DUTF-8%26oe%3DUTF-8%26se > > lm%3DPine.BSF.4.10.10001272241220.56704-100000%2540sasknow.com%26rnum% > > 3D5 > > *extremely* long line wrapped. Knowing just a little bit about Google, > this reduces to: > > http://groups.google.ca/groups?threadm=Pine.BSF.4.10.10001271959170.55593-100000_sasknow.com%40ns.sol.net > > But, yes... That was little piece of history! :-) > > > I'm having exacly the same problem with my FreeBSD4.8. > > > > Some houres ago... eveything was Ok.... but I don't know what has > > changed.... I can still FTP the FeeBSD server from my windows box.... > > but nothing more.... just the same arror as the one you've described: > > "... 425 can't build data connection: operation timed out ..." :-((( > > > > Do you have any idea about how to get around this? > > Well, in my case, it turned out to be pilot error... FTP is a tricky > protocol to allow through default-deny firewalls, and I had simultaneous > bugs in my firewall config *and* FTPd config, with respect to passive > transfers. It took me a while to spot. > > Check your firewall config carefully, and make sure you have a good > understanding of how the FTP protocol works (in active and passive > modes). Completely open your firewall temporarily (i.e., ipfw add 201 > allow ip from any to any) and verify that things work there. If things > work there (or fail differently), the problem is with your firewall (and > possibly FTPd configuration, if you're using the ephemeral port range > for PASV). If your tests fail in *exactly* the same manner as before, > including the same timeout delays, you can ignore your firewall for the > time being (but leave it open until you get FTP working, and *then* > restrict it, so you're only testing one unknown at a time). Try running > tcpdump and sockstat on the server to see what's coming and going for > FTP traffic. /ports/net/trafshow might be helpful, too. > Hello! Thanks for the reply! But I'm not running any firewall on my server... Here's my /etc/rc.conf .. .. #named_enable="YES" firewall_enable="NO" #natd_enable="NO" #firewall_type="open" #firewall_script="/etc/rc.ipfw" enable_quotas="YES" check_quotas="NO" linux_enable="YES" ... ... So, my problem shouldn't be with the firewall on my server... About the configuration of FTPd, I cannot find the config file (ftpd.conf or ftpd.config or ftpd.cf )on my server(FreeBSD4.8 stable, built yesterday). Note that I'm trying to connect to FreeBSD from a windows workstation.... both the workstation and the FreeBSD server are in the same LAN.... From my Windows box, I can easilly connect via FTP to other Linux sercers in my LAN or even out of the LAN.. But when I connect to my FreeBSD server, it connecs well... but I cannot do anything useful on the server.... I get the error "...425 can't build data connection: operation timed out..." My server was running FreeBSD4.6 before and I didn't have any trouble with FTPd .... I just upgraded yesterday.... and still, I haven't noticed this problem.... I start getting this error just a while ago... :-( ... I've rebooted the server... but it didn't help Thanks for the support. Arcadius.