Intermittent Active mode attempts by server

Need help with FileZilla Server? Something does not work as expected? In this forum you may find an answer.

Moderator: Project members

Post Reply
Message
Author
jacquesc@capisol.co.za
500 Command not understood
Posts: 1
Joined: 2019-05-12 14:20
First name: Jacques
Last name: Correia

Intermittent Active mode attempts by server

#1 Post by jacquesc@capisol.co.za » 2019-05-12 14:40

We have the server setup for Passive mode and all client connection specify passive mode. For connections requiring explicit TLS encryption we randomly receive "425 Can't open data connection for transfer of '...'". On retrying the upload for the same file it usually works.

These are our observations:
The ones that fail call the PASV command but instead of the usual '227 Entering Passive Mode'-message it reports '421 Could not create socket.', then followed by the PORT command. This ultimately fails as we are not setup for Active Mode at all and then ultimately we get '425 Can't open data connection for transfer of '...' ' on the client.

We are running the latest release of the server and can produce this with only a 3 separate active uploads - therefore load is not the issue either (on another server with more load we do see it more often, but cannot determine % fails vs successes).

What would be the reason for this scenario and how would we be able to go about finding or resolving the root cause of the 421?

Is this a bug or something to expect?

Thanks in advance

User avatar
botg
Site Admin
Posts: 32084
Joined: 2004-02-23 20:49
First name: Tim
Last name: Kosse
Contact:

Re: Intermittent Active mode attempts by server

#2 Post by botg » 2019-05-12 19:34

Check your configured port range, it seems to be too small.

User avatar
boco
Contributor
Posts: 24433
Joined: 2006-05-01 03:28
Location: Germany

Re: Intermittent Active mode attempts by server

#3 Post by boco » 2019-05-12 21:01

Please note that an FTP server cannot initiate any command. It's the FTP client that, after the server sends the error reply (because it has run out of ports, or is blocked), falls back to Active mode. Usually it is possible to disable the Active mode fallback in the client, to speed up operation. If you are certain that Active mode will not work for sure, it's a redundant operation and thus not required to even be attempted.
### BEGIN SIGNATURE BLOCK ###
No support requests per PM! You will NOT get any reply!!!
FTP connection problems? Do yourself a favor and read Network Configuration.
All FileZilla products fully support IPv6. http://worldipv6launch.org
### END SIGNATURE BLOCK ###

Post Reply