Victor
At 12:12 20.08.2003 -0700, you wrote:
My friend is still troubleshooting why Dachstein works with an internal passive ftp client SENDING a file and Bering fails.
System is PPPoE
He ran tdpdump in passive ftp mode . Dachstein showns the mss at differnt stages of the ftp as 1460 and 1412 In Bering the tcpdump log shows that mss is 1452 and 1460. Bering has CLAMPMSS = Yes
The internal ftp passive mode client log shows the port that it will send the ftp file.
The tcpdump shows that in Dachstien that port is used and the ftp is successful.
In Bering the port used by the client shows in the tcpdump file AS ONE PORT LOWER THAN THE REQUESTED PORT.
Why would ip_conntrack_ftp assign a passive client one port lower than the agreed upon port for transfer.
******
if the ftp log shows that the tcp port for sending the file is supposed to be 13780
tcpdump on the Bering firewall shows the packet is sent on port 13779 and the ftp fails.
******
Is this a bug in ip_conntrack_ftp that only shows up when a client sends a file?
Passive clients probably usually recieve files instead of sending them.
Anyone else seen this problem? My friend's weather station will not send ftp files through the Bering box. It will send files through the Dactsein box. All hardware, application program , remote ftp server and ISP are the same.
Can you verify this behaviour on your own ADSL line? You would not have to rely on external information and might be in a position to present real data to the group.
I checked passive ftp on Bering 1.0 stable 2.4.18 (without pppoe so this is not directly applicable) without problems.
cheers
Erich
I will get my friend to run some more tcpdump files and try several different experiments to isolate it more.
I need to get his to capture the eth1 and external packets to compare.
Passive ftp fill sending is working now on his network without ip_conntrak_ftp and ip_nat_ftp
I have a static IP and do not see the problem. I understand that PPPoE rebuilds the packets from ethernet to ppp but that certainly should not affect the header information.
-- Victor McAllister
------------------------------------------------------- This SF.net email is sponsored by: VM Ware With VMware you can run multiple operating systems on a single machine. WITHOUT REBOOTING! Mix Linux / Windows / Novell virtual machines at the same time. Free trial click here:http://www.vmware.com/wl/offer/358/0 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
