Perhaps they've (mis)configured their FTP server to not allow a connection from your IP? I can do that with my AS/400 - an unallowed client can connect, but when the FTP server doesn't find that IP in my table the connection is closed.
Tom Hightower Solutions, Inc http://www.simas.com Jeff Stillwall <[EMAIL PROTECTED] To: <[EMAIL PROTECTED]> ne.net> cc: Sent by: Subject: Can't ftp to one host redhat-list-admin @redhat.com 06/18/2003 01:57 PM Please respond to redhat-list Hello, List.... I'm working at a temporary location. We're set up with a T1 and a RH7.2 box as firewall/nat (using iptables). Most client machines are RH 7.3. We've never had any problems using ftp to hosts outside of our site. Now however, there's one that won't connect for us: $ ftp ftp.badserver.net Connected to ftp.badserver.net. 421 Service not available, remote server has closed connection. I *can* ftp to this server from other locations though (friend's office, home, etc.). I captured it using ethereal, and got this (names changed to protect the guilty): 0.000000 theclient -> ftp.badserver.net TCP 50299 > ftp [SYN] Seq=1670805311 Ack=0 Win=32768 Len=0 0.015400 ftp.badserver.net -> theclient TCP ftp > 50299 [SYN, ACK] Seq=2510571645 Ack=1670805312 Win=10136 Len=0 0.015580 theclient -> ftp.badserver.net TCP 50299 > ftp [ACK] Seq=1670805312 Ack=2510571646 Win=33304 Len=0 5.065354 ftp.badserver.net -> theclient TCP ftp > 50299 [FIN, ACK] Seq=2510571646 Ack=1670805312 Win=10136 Len=0 5.065528 theclient -> ftp.badserver.net TCP 50299 > ftp [ACK] Seq=1670805312 Ack=2510571647 Win=33304 Len=0 5.071741 theclient -> ftp.badserver.net TCP 50299 > ftp [FIN, ACK] Seq=1670805312 Ack=2510571647 Win=33304 Len=0 5.087217 ftp.badserver.net -> theclient TCP ftp > 50299 [ACK] Seq=2510571647 Ack=1670805313 Win=10136 Len=0 So, while the fourth frame should be the ftp banner, I get this short FIN, ACK loop. I'm stumped. Anyone? Thanks! -- Jeff Stillwall P.S. I thought it might be an MTU problem, but I dropped one client MTU down to 800, and no joy. Also, I did try hooking one machine up outside of the firewall, and it was unsuccessful, too. -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
