FTP from a server IP to server IP

[LawsHosting]

Ok, this is confusing, when people upgrade their WordPress via its internal FTP routine (may happen with more CMS's though) to AN_IP_ON_SERVER<>AN_IP_ON_SERVER, although the updates are fine, I get this in my kern.log:

kernel: nf_ct_ftp: dropping packetIN= OUT=lo SRC=AN_IP_ON_SERVER DST=AN_IP_ON_SERVER LEN=104 TOS=0x00 PREC=0x00 TTL=64 ID=703 DF PROTO=TCP SPT=21 DPT=51892 SEQ=3977930889 ACK=3985423869 WINDOW=747 RES=0x00 ACK PSH URGP=0 OPT (0101080A1952DA671952CDDA) UID=107 GID=110

Google, although a mine for information, didn't really turn up with anything.

Any insights will be grateful.

 

[nobaloney]

Have you checked with your firewall turned off?

Jeff

 

[scsi]

Do you have a set list of passive ports opened through your firewall? It is in the guide on csf.

 

[LawsHosting]

-A INPUT -p tcp -m tcp --dport 1023:65535 -j ACCEPT

Does FTP need UDP too?

Output/Outbound is set to Accept by default.

 

[scsi]

ftp is tcp only but I definately wouldnt open that many ports... you should be fine by opening only 1000 ports or so and then setting those ports to PassivePorts in proftpd.conf

 

[edzelf]

This error message will disappear when the hostname in the ftp-layer configuration is set to "localhost".

 

[HighFly]

This error message will disappear when the hostname in the ftp-layer configuration is set to "localhost".

Hoi Ed,

Where do i need to change this? In proftpd.conf?

 

[edzelf]

Hello HighFly,

No, it's a WordPress setting. You will be prompted for the ftp hostname when you try to update WordPress.