FTP Connection strange results with different settings.

Need help with FileZilla Server? Something does not work as expected? In this forum you may find an answer.

Moderator: Project members

Post Reply
Message
Author
tehvlb
504 Command not implemented
Posts: 7
Joined: 2018-05-04 08:21
First name: martyn
Last name: jeffrey

FTP Connection strange results with different settings.

#1 Post by tehvlb » 2018-05-04 08:41

Hi guys

sincere apologies for my first post being a request for help.

I have been trying to setup a secure FTP server behind a corporate firewall for a few days, i am 100% sure this problem is with the firewall but since it is managed by a third party i cannot 100% say.

So here is the scenario,

I initially setup IIS FTP, set the control port to 990 and the data port range to 65000-66000. Could connect using Filezilla from internal but couldnt from external. ftptest site couldnt see it either.

I asked network guys to forward the port range which they said they did. I was able to connect to the control port but it would fail when tryin to connect via one of the passive ports.

I then setup an identical instance on our test enviroment, had the same connection problems as above but when i personally forwaded the ports (i have control of the test enviroment firewall/router) i was able to connect and testftp site showed as all ok.

So passed this info onto network guys and they reckon the ports have been forwarded properly (they send various screenshots of the connection rules etc and on the face of it they did seem to be done. it was also the case that the connection rules seemed to match the one for port 990 which was ok).

So to further test it i disabled all IIS FTP and setup Filezilla FTP, same scenario as above, can connect from internal to the production site but not external and can connect to test ftp site from both.

to me this indicates that the production FTP server is not reachable from external and knowing the network requirements this can only be due to the passive ports not being accessible.

The only anomaly is that when i try to connect to the production filezilla server via ftptest site it doesnt give me an error about passive ports, rather it gives me an error that says

"Make sure the account has permissions to list directories."

which is strange as its the same account that i use when connecting from internally... i know this may a red herring.

all in all i guess i am just looking for validation that this is due to the production firewall/router.

Thank you for your help in advance.



SERVER LOG

(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> Connected on port 21, sending welcome message...
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 220-FileZilla Server 0.9.60 beta
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 220-written by Tim Kosse (tim.kosse@filezilla-project.org)
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 220 Please visit https://filezilla-project.org/
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> AUTH TLS
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 234 Using authentication type TLS
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> TLS connection established
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> USER vlb
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 331 Password required for vlb
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> PASS ********
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 230 Logged on
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> SYST
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 215 UNIX emulated by FileZilla
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> FEAT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 211-Features:
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MDTM
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> REST STREAM
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> SIZE
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MLST type*;size*;modify*;
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MLSD
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> AUTH SSL
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> AUTH TLS
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PROT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PBSZ
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> UTF8
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> CLNT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MFMT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> EPSV
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> EPRT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 211 End
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PBSZ 0
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 200 PBSZ=0
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PROT P
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 200 Protection level set to P
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PWD
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 257 "/" is current directory.
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> TYPE I
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> 200 Type set to I
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> PASV
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> 227 Entering Passive Mode (x,x,x,x,97,244)
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> MLSD
(000050) 04/05/2018 09:38:31 - vlb (90.253.33.126)> 425 Can't open data connection for transfer of "/"


CLIENT LOG

Trace: CRealControlSocket::DoClose(66)
Trace: CControlSocket::DoClose(66)
Trace: CFtpControlSocket::ResetOperation(66)
Trace: CControlSocket::ResetOperation(66)
Trace: CFileZillaEnginePrivate::ResetOperation(66)
Trace: CRealControlSocket::DoClose(66)
Trace: CControlSocket::DoClose(66)
Trace: CControlSocket::DoClose(66)
Trace: CFileZillaEnginePrivate::ResetOperation(0)
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 0
Status: Connecting to x.x.x.x:21...
Status: Connection established, waiting for welcome message...
Trace: CFtpControlSocket::OnReceive()
Response: 220-FileZilla Server 0.9.60 beta
Response: 220-written by Tim Kosse (tim.kosse@filezilla-project.org)
Response: 220 Please visit https://filezilla-project.org/
Trace: CFtpLogonOpData::ParseResponse() in state 1
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 2
Command: AUTH TLS
Trace: CFtpControlSocket::OnReceive()
Response: 234 Using authentication type TLS
Trace: CFtpLogonOpData::ParseResponse() in state 2
Status: Initializing TLS...
Trace: CTlsSocketImpl::Handshake()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: TLS handshake: About to send CLIENT HELLO
Trace: TLS handshake: Sent CLIENT HELLO
Trace: CTlsSocketImpl::OnSend()
Trace: CTlsSocketImpl::OnRead()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: CTlsSocketImpl::OnRead()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: TLS handshake: Received SERVER HELLO
Trace: TLS handshake: Processed SERVER HELLO
Trace: TLS handshake: Received CERTIFICATE
Trace: TLS handshake: Processed CERTIFICATE
Trace: TLS handshake: Received SERVER KEY EXCHANGE
Trace: TLS handshake: Processed SERVER KEY EXCHANGE
Trace: TLS handshake: Received SERVER HELLO DONE
Trace: TLS handshake: Processed SERVER HELLO DONE
Trace: TLS handshake: About to send CLIENT KEY EXCHANGE
Trace: TLS handshake: Sent CLIENT KEY EXCHANGE
Trace: TLS handshake: About to send FINISHED
Trace: TLS handshake: Sent FINISHED
Trace: CTlsSocketImpl::OnRead()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: TLS handshake: Received NEW SESSION TICKET
Trace: TLS handshake: Processed NEW SESSION TICKET
Trace: TLS handshake: Received FINISHED
Trace: TLS handshake: Processed FINISHED
Trace: TLS Handshake successful
Trace: Protocol: TLS1.2, Key exchange: ECDHE-RSA, Cipher: AES-256-GCM, MAC: AEAD
Status: Verifying certificate...
Status: TLS connection established.
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 5
Command: USER vlb
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 331 Password required for vlb
Trace: CFtpLogonOpData::ParseResponse() in state 5
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 5
Command: PASS ********
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 230 Logged on
Trace: CFtpLogonOpData::ParseResponse() in state 5
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 10
Command: PBSZ 0
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 200 PBSZ=0
Trace: CFtpLogonOpData::ParseResponse() in state 10
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 11
Command: PROT P
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 200 Protection level set to P
Trace: CFtpLogonOpData::ParseResponse() in state 11
Status: Logged in
Trace: Measured latency of 39 ms
Trace: CFtpControlSocket::ResetOperation(0)
Trace: CControlSocket::ResetOperation(0)
Trace: CFileZillaEnginePrivate::ResetOperation(0)
Status: Retrieving directory listing...
Trace: CControlSocket::SendNextCommand()
Trace: CFtpListOpData::ListSend() in state 0
Trace: CFtpChangeDirOpData::Send() in state 0
Trace: CFtpChangeDirOpData::Send() in state 1
Command: PWD
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 257 "/" is current directory.
Trace: CFtpChangeDirOpData::ParseResponse() in state 1
Trace: CFtpControlSocket::ResetOperation(0)
Trace: CControlSocket::ResetOperation(0)
Trace: CControlSocket::ParseSubcommandResult(0)
Trace: CFtpListOpData::SubcommandResult() in state 1
Trace: CControlSocket::SendNextCommand()
Trace: CFtpListOpData::ListSend() in state 2
Trace: CFtpRawTransferOpData::Send() in state 1
Command: TYPE I
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 200 Type set to I
Trace: CFtpRawTransferOpData::ParseResponse() in state 1
Trace: CControlSocket::SendNextCommand()
Trace: CFtpRawTransferOpData::Send() in state 2
Command: PASV
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 227 Entering Passive Mode (x,x,x,x,97,200)
Trace: CFtpRawTransferOpData::ParseResponse() in state 2
Trace: CControlSocket::SendNextCommand()
Trace: CFtpRawTransferOpData::Send() in state 4
Trace: Destination IP of data connection does not match peer IP of control connection. Not binding source address of data connection.
Command: MLSD
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 425 Can't open data connection for transfer of "/"
Trace: CFtpRawTransferOpData::ParseResponse() in state 4
Trace: CFtpControlSocket::ResetOperation(2)
Trace: CControlSocket::ResetOperation(2)
Trace: CControlSocket::ParseSubcommandResult(2)
Trace: CFtpListOpData::SubcommandResult() in state 3
Trace: CFtpControlSocket::ResetOperation(2)
Trace: CControlSocket::ResetOperation(2)
Error: Failed to retrieve directory listing
Trace: CFileZillaEnginePrivate::ResetOperation(2)

User avatar
botg
Site Admin
Posts: 35507
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTP Connection strange results with different settings.

#2 Post by botg » 2018-05-04 10:49

Please post an unmodified log.

tehvlb
504 Command not implemented
Posts: 7
Joined: 2018-05-04 08:21
First name: martyn
Last name: jeffrey

Re: FTP Connection strange results with different settings.

#3 Post by tehvlb » 2018-05-04 10:51

botg wrote:
2018-05-04 10:49
Please post an unmodified log.
the only thing i redacted was ip addresses

User avatar
botg
Site Admin
Posts: 35507
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTP Connection strange results with different settings.

#4 Post by botg » 2018-05-04 10:54

And you redacted exactly the information needed to diagnose the issue.

tehvlb
504 Command not implemented
Posts: 7
Joined: 2018-05-04 08:21
First name: martyn
Last name: jeffrey

Re: FTP Connection strange results with different settings.

#5 Post by tehvlb » 2018-05-04 10:56

botg wrote:
2018-05-04 10:54
And you redacted exactly the information needed to diagnose the issue.
didnt realise, apologies

ip is 185.14.144.226

User avatar
botg
Site Admin
Posts: 35507
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTP Connection strange results with different settings.

#6 Post by botg » 2018-05-04 12:17

In absolutely all redacted places in the log?

tehvlb
504 Command not implemented
Posts: 7
Joined: 2018-05-04 08:21
First name: martyn
Last name: jeffrey

Re: FTP Connection strange results with different settings.

#7 Post by tehvlb » 2018-05-04 12:27

botg wrote:
2018-05-04 12:17
In absolutely all redacted places in the log?
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> Connected on port 21, sending welcome message...
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 220-FileZilla Server 0.9.60 beta
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 220-written by Tim Kosse (tim.kosse@filezilla-project.org)
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 220 Please visit https://filezilla-project.org/
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> AUTH TLS
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 234 Using authentication type TLS
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> TLS connection established
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> USER vlb
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> 331 Password required for vlb
(000050) 04/05/2018 09:38:20 - (not logged in) (90.253.33.126)> PASS ********
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 230 Logged on
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> SYST
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 215 UNIX emulated by FileZilla
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> FEAT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 211-Features:
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MDTM
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> REST STREAM
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> SIZE
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MLST type*;size*;modify*;
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MLSD
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> AUTH SSL
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> AUTH TLS
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PROT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PBSZ
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> UTF8
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> CLNT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> MFMT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> EPSV
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> EPRT
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 211 End
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PBSZ 0
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 200 PBSZ=0
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PROT P
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 200 Protection level set to P
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> PWD
(000050) 04/05/2018 09:38:20 - vlb (90.253.33.126)> 257 "/" is current directory.
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> TYPE I
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> 200 Type set to I
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> PASV
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> 227 Entering Passive Mode (129,230,66,216,97,244)
(000050) 04/05/2018 09:38:21 - vlb (90.253.33.126)> MLSD
(000050) 04/05/2018 09:38:31 - vlb (90.253.33.126)> 425 Can't open data connection for transfer of "/"
(000050) 04/05/2018 09:40:23 - vlb (90.253.33.126)> disconnected.





CLIENT

Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 0
Status: Connecting to 185.14.144.226:21...
Status: Connection established, waiting for welcome message...
Trace: CFtpControlSocket::OnReceive()
Response: 220-FileZilla Server 0.9.60 beta
Response: 220-written by Tim Kosse (tim.kosse@filezilla-project.org)
Response: 220 Please visit https://filezilla-project.org/
Trace: CFtpLogonOpData::ParseResponse() in state 1
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 2
Command: AUTH TLS
Trace: CFtpControlSocket::OnReceive()
Response: 234 Using authentication type TLS
Trace: CFtpLogonOpData::ParseResponse() in state 2
Status: Initializing TLS...
Trace: CTlsSocketImpl::Handshake()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: TLS handshake: About to send CLIENT HELLO
Trace: TLS handshake: Sent CLIENT HELLO
Trace: CTlsSocketImpl::OnSend()
Trace: CTlsSocketImpl::OnRead()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: CTlsSocketImpl::OnRead()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: TLS handshake: Received SERVER HELLO
Trace: TLS handshake: Processed SERVER HELLO
Trace: TLS handshake: Received CERTIFICATE
Trace: TLS handshake: Processed CERTIFICATE
Trace: TLS handshake: Received SERVER KEY EXCHANGE
Trace: TLS handshake: Processed SERVER KEY EXCHANGE
Trace: TLS handshake: Received SERVER HELLO DONE
Trace: TLS handshake: Processed SERVER HELLO DONE
Trace: TLS handshake: About to send CLIENT KEY EXCHANGE
Trace: TLS handshake: Sent CLIENT KEY EXCHANGE
Trace: TLS handshake: About to send FINISHED
Trace: TLS handshake: Sent FINISHED
Trace: CTlsSocketImpl::OnRead()
Trace: CTlsSocketImpl::ContinueHandshake()
Trace: TLS handshake: Received NEW SESSION TICKET
Trace: TLS handshake: Processed NEW SESSION TICKET
Trace: TLS handshake: Received FINISHED
Trace: TLS handshake: Processed FINISHED
Trace: TLS Handshake successful
Trace: Protocol: TLS1.2, Key exchange: ECDHE-RSA, Cipher: AES-256-GCM, MAC: AEAD
Status: Verifying certificate...
Status: TLS connection established.
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 5
Command: USER vlb
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 331 Password required for vlb
Trace: CFtpLogonOpData::ParseResponse() in state 5
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 5
Command: PASS ********
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 230 Logged on
Trace: CFtpLogonOpData::ParseResponse() in state 5
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 6
Command: SYST
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 215 UNIX emulated by FileZilla
Trace: CFtpLogonOpData::ParseResponse() in state 6
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 7
Command: FEAT
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 211-Features:
Response: MDTM
Response: REST STREAM
Response: SIZE
Response: MLST type*;size*;modify*;
Response: MLSD
Response: AUTH SSL
Response: AUTH TLS
Response: PROT
Response: PBSZ
Response: UTF8
Response: CLNT
Response: MFMT
Response: EPSV
Response: EPRT
Response: 211 End
Trace: CFtpLogonOpData::ParseResponse() in state 7
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 10
Command: PBSZ 0
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 200 PBSZ=0
Trace: CFtpLogonOpData::ParseResponse() in state 10
Trace: CControlSocket::SendNextCommand()
Trace: CFtpLogonOpData::Send() in state 11
Command: PROT P
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 200 Protection level set to P
Trace: CFtpLogonOpData::ParseResponse() in state 11
Status: Logged in
Trace: Measured latency of 39 ms
Trace: CFtpControlSocket::ResetOperation(0)
Trace: CControlSocket::ResetOperation(0)
Trace: CFileZillaEnginePrivate::ResetOperation(0)
Status: Retrieving directory listing...
Trace: CControlSocket::SendNextCommand()
Trace: CFtpListOpData::ListSend() in state 0
Trace: CFtpChangeDirOpData::Send() in state 0
Trace: CFtpChangeDirOpData::Send() in state 1
Command: PWD
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 257 "/" is current directory.
Trace: CFtpChangeDirOpData::ParseResponse() in state 1
Trace: CFtpControlSocket::ResetOperation(0)
Trace: CControlSocket::ResetOperation(0)
Trace: CControlSocket::ParseSubcommandResult(0)
Trace: CFtpListOpData::SubcommandResult() in state 1
Trace: CControlSocket::SendNextCommand()
Trace: CFtpListOpData::ListSend() in state 2
Trace: CFtpRawTransferOpData::Send() in state 1
Command: TYPE I
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 200 Type set to I
Trace: CFtpRawTransferOpData::ParseResponse() in state 1
Trace: CControlSocket::SendNextCommand()
Trace: CFtpRawTransferOpData::Send() in state 2
Command: PASV
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 227 Entering Passive Mode (129,230,66,216,97,246)
Trace: CFtpRawTransferOpData::ParseResponse() in state 2
Trace: CControlSocket::SendNextCommand()
Trace: CFtpRawTransferOpData::Send() in state 4
Trace: Destination IP of data connection does not match peer IP of control connection. Not binding source address of data connection.
Command: MLSD
Trace: CTlsSocketImpl::OnRead()
Trace: CFtpControlSocket::OnReceive()
Response: 425 Can't open data connection for transfer of "/"
Trace: CFtpRawTransferOpData::ParseResponse() in state 4
Trace: CFtpControlSocket::ResetOperation(2)
Trace: CControlSocket::ResetOperation(2)
Trace: CControlSocket::ParseSubcommandResult(2)
Trace: CFtpListOpData::SubcommandResult() in state 3
Trace: CFtpControlSocket::ResetOperation(2)
Trace: CControlSocket::ResetOperation(2)
Error: Failed to retrieve directory listing
Trace: CFileZillaEnginePrivate::ResetOperation(2)




100% unredacted

thank you

User avatar
botg
Site Admin
Posts: 35507
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTP Connection strange results with different settings.

#8 Post by botg » 2018-05-04 12:41

Status: Connecting to 185.14.144.226:21...
Command: PASV
Response: 227 Entering Passive Mode (129,230,66,216,97,246)
That doesn't seem correct. The server doesn't know its own public IP address.

tehvlb
504 Command not implemented
Posts: 7
Joined: 2018-05-04 08:21
First name: martyn
Last name: jeffrey

Re: FTP Connection strange results with different settings.

#9 Post by tehvlb » 2018-05-04 12:45

botg wrote:
2018-05-04 12:41
Status: Connecting to 185.14.144.226:21...
Command: PASV
Response: 227 Entering Passive Mode (129,230,66,216,97,246)
That doesn't seem correct. The server doesn't know its own public IP address.
thats the internal address, if i change the setting in passive to "use the following IP" andenter the public facing ip 185.14.144.226 this is the log

(000055) 04/05/2018 13:44:58 - (not logged in) (90.253.33.126)> Connected on port 21, sending welcome message...
(000055) 04/05/2018 13:44:58 - (not logged in) (90.253.33.126)> 220-FileZilla Server 0.9.60 beta
(000055) 04/05/2018 13:44:58 - (not logged in) (90.253.33.126)> 220-written by Tim Kosse (tim.kosse@filezilla-project.org)
(000055) 04/05/2018 13:44:58 - (not logged in) (90.253.33.126)> 220 Please visit https://filezilla-project.org/
(000055) 04/05/2018 13:44:58 - (not logged in) (90.253.33.126)> AUTH TLS
(000055) 04/05/2018 13:44:58 - (not logged in) (90.253.33.126)> 234 Using authentication type TLS
(000055) 04/05/2018 13:44:59 - (not logged in) (90.253.33.126)> TLS connection established
(000055) 04/05/2018 13:44:59 - (not logged in) (90.253.33.126)> USER vlb
(000055) 04/05/2018 13:44:59 - (not logged in) (90.253.33.126)> 331 Password required for vlb
(000055) 04/05/2018 13:44:59 - (not logged in) (90.253.33.126)> PASS ********
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 230 Logged on
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> SYST
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 215 UNIX emulated by FileZilla
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> FEAT
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 211-Features:
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> MDTM
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> REST STREAM
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> SIZE
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> MLST type*;size*;modify*;
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> MLSD
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> AUTH SSL
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> AUTH TLS
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> PROT
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> PBSZ
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> UTF8
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> CLNT
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> MFMT
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> EPSV
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> EPRT
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 211 End
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> PBSZ 0
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 200 PBSZ=0
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> PROT P
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 200 Protection level set to P
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> PWD
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 257 "/" is current directory.
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> TYPE I
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 200 Type set to I
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> PASV
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> 227 Entering Passive Mode (185,14,144,226,97,254)
(000055) 04/05/2018 13:44:59 - vlb (90.253.33.126)> MLSD
(000055) 04/05/2018 13:45:10 - vlb (90.253.33.126)> 425 Can't open data connection for transfer of "/"

User avatar
botg
Site Admin
Posts: 35507
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTP Connection strange results with different settings.

#10 Post by botg » 2018-05-04 12:49

Which range of ports did you configure in FileZilla Server and open in all the firewalls and forward in all the NAT routers in front of it?

tehvlb
504 Command not implemented
Posts: 7
Joined: 2018-05-04 08:21
First name: martyn
Last name: jeffrey

Re: FTP Connection strange results with different settings.

#11 Post by tehvlb » 2018-05-04 12:51

botg wrote:
2018-05-04 12:49
Which range of ports did you configure in FileZilla Server and open in all the firewalls and forward in all the NAT routers in front of it?
25000-25101

so in that last log

97*256+254 = 25086

User avatar
botg
Site Admin
Posts: 35507
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse

Re: FTP Connection strange results with different settings.

#12 Post by botg » 2018-05-07 16:26

There still must be some firewall or NAT router interfering with the connection. Have you tried a hardware network sniffer to see where the opening of the data connection fails?

tehvlb
504 Command not implemented
Posts: 7
Joined: 2018-05-04 08:21
First name: martyn
Last name: jeffrey

Re: FTP Connection strange results with different settings.

#13 Post by tehvlb » 2018-05-08 07:56

botg wrote:
2018-05-07 16:26
There still must be some firewall or NAT router interfering with the connection. Have you tried a hardware network sniffer to see where the opening of the data connection fails?
will be trying it with them today. will keep you updated

thanks

Stunner
226 Transfer OK
Posts: 63
Joined: 2009-03-31 01:19
First name: A
Last name: Dog

Re: FTP Connection strange results with different settings.

#14 Post by Stunner » 2018-05-27 12:49

Just an FYI; awhile back I wrote FileZilla Log Analyzer which has a scrambling feature that allows you to scramble sensitive information such as user name, ip address and files and folder names so you don't have to manually take out information that would otherwise be useful. It is a stick on this forum: viewtopic.php?f=6&t=14719

And here is the relevant portion of the README: https://github.com/Stunner/FileZilla-Lo ... scrambling

Post Reply