Hi Michael, OK, to make sure we are on the same page, the setup (as I read it) is as follows...
Public FTP Server (PASV) -- AstLinux (edge router) -- Private FTP Client correct ? And yes, if correct, the "nf_nat_ftp" module is not used in this case since all FTP connections are outbound by the client. Could there be differences in the FTP Client ? Long shot, possibly the Public FTP Server doesn't have an allowed firewall TCP port range matching the pasv_min/max range of the FTP server configuration. You may be able to test this by trying the FTP client many times to see if any succeed. Lonnie On Sep 11, 2014, at 9:39 PM, Michael Knill <michael.kn...@ipcsolutions.com.au> wrote: > Thanks Lonnie > > nf_nat_ftp 972 0 > nf_nat 10076 3 ipt_MASQUERADE,nf_nat_ftp,iptable_nat > nf_conntrack_ftp 3784 1 nf_nat_ftp > nf_conntrack 36939 8 > ipt_MASQUERADE,nf_nat_ftp,iptable_nat,nf_nat,nf_conntrack_ipv4,xt_state,xt_conntrack,nf_conntrack_ftp > > Looks like it is all loaded but would this be required if i was using Passive > FTP? > I am actually starting to suspect it could be Service Provider problem. > > Thanks for your help so far. > > Regards > Michael Knill > > > > > On 12 Sep 2014, at 11:20 am, Lonnie Abelbeck <li...@lonnie.abelbeck.com> > wrote: > > Replying to myself, > > It seems AIF automatically modprobe's "nf_nat_ftp" if NAT is enabled. So > first try: > -- > lsmod | grep nf_nat_ftp > -- > to see if "nf_nat_ftp" is loaded already. > > Of course if AstLinux is not the edge router then it is more complicated. > > Lonnie > > > > On Sep 11, 2014, at 8:03 PM, Lonnie Abelbeck <li...@lonnie.abelbeck.com> > wrote: > >> Hi Michael, >> >> On the AstLinux system try: >> -- >> modprobe nf_nat_ftp >> -- >> and then try again. >> >> If that works, you can make it persistent by adding "nf_nat_ftp" into >> /etc/rc.modules or "modprobe nf_nat_ftp" into /mnt/kd/rc.local, etc. . >> >> Lonnie >> >> >> On Sep 11, 2014, at 7:08 PM, Michael Knill >> <michael.kn...@ipcsolutions.com.au> wrote: >> >>> Hi Group >>> >>> I have an unusual one that Im not really sure where to start. >>> The customer has an application which FTP’s (not SFTP mind you) files from >>> a central site. Using PASSIVE FTP, when it tries to connect the data >>> channel the session times out. There are no entries in the log. It is using >>> Astlinux 1.1.2. >>> >>> I have tried it from another Astlinux location and it works fine. >>> >>> Any ideas? >>> >>> Regards >>> Michael Knill ------------------------------------------------------------------------------ Want excitement? Manually upgrade your production database. When you want reliability, choose Perforce Perforce version control. Predictably reliable. http://pubads.g.doubleclick.net/gampad/clk?id=157508191&iu=/4140/ostg.clktrk _______________________________________________ Astlinux-users mailing list Astlinux-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to pay...@krisk.org.
