On Mon, 13 Nov 2006, Marc Peters wrote: > 60 seconds, and the client gives me this message: > 421 Service not available, remote server timed out. Connection closed (mac osx > command line ftp-client) > > That CWD line did not pass out on the DMZ interface? > > > > no it didn't. it is everytime the same, that CWD line didn't pass the dmz > interface and so the server didn't recieve the command.
Because ftp-proxy can log the line, it has completely received it and will try to pass it out again. I can think of two things that may happen: (1) it's getting blocked (check pflog) (2) libevent may be holding it (can you try setting "export EVENT_NOKQUEUE=1" and restart ftp-proxy from that shell? "top" should report "select" instead of "kqueue" in the WAIT column) What happens if you remove the rdr for ftp-proxy? Does the control (port 21) connection work ok then?
