impossible to connect with FTP

pppplus

pppplus

Verified User
Joined
Dec 19, 2008
Messages
528
Hi

From yesterday, impossible to connect via FTP :

On filezilla, I've :

Status: Resolving address of xxxx.fr
Status: Connecting to 12.34.56.57:21...
Status: Connection established, waiting for welcome message...
Status: Initializing TLS...
Status: Verifying certificate...
Status: TLS connection established.
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is the current directory
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (12,34,56,57,139,186).
Command: MLSD
Error: Connection timed out
Error: Failed to retrieve directory listing
Click to expand...

Nothing change from... a very long time.
No problem to connect with ssh, no problem in websites.

Problem to connect with FTP is on all accounts.
I've created a new one to test, I've changed an existing password to test...

I've found nothing interesting in logs.

I've read this : http://help.directadmin.com/item.php?id=249
=> nothing in /etc/proftpd.vhosts.conf

I've tried that :
Code: 
/etc/init.d/proftpd stop
proftpd -n -d 20

2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): RELINQUISH PRIVS at mod_auth.c:1493
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): USER PRIVS 501 at mod_auth.c:796
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): retrieved UID 501 for user 'admin'
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): RELINQUISH PRIVS at mod_auth.c:799
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): set TZ environment variable to 'CET'
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): Preparing to chroot to directory '/home/admin'
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): ROOT PRIVS at auth.c:1424
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): RELINQUISH PRIVS at auth.c:1427
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): Environment successfully chroot()ed
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): ROOT PRIVS at mod_auth.c:1542
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): SETUP PRIVS at mod_auth.c:1564
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): in dir_check_full(): path = '/', fullpath = '/home/admin/'.
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_cap
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): mod_cap/1.1: uid = 501, euid = 501, gid = 502, egid = 502
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): mod_cap/1.1: capabilities '= cap_chown,cap_setgid,cap_setuid,cap_net_bind_service+ep'
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_tls
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_ratio
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_delay
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_log
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_ls
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_auth
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): unable to display DisplayLogin file 'welcome.msg': No such file or directory
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_rlimit
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_xfer
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PASS (hidden)' to mod_core
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'PASS (hidden)' to mod_log
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'PASS (hidden)' to mod_readme
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'PASS (hidden)' to mod_ratio
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'PASS (hidden)' to mod_auth
2015-01-25 08:03:37,838 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): USER admin: Login successful.
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'OPTS UTF8 ON' to mod_tls
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'OPTS UTF8 ON' to mod_core
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'OPTS UTF8 ON' to mod_core
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'OPTS UTF8 ON' to mod_core
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): in dir_check_full(): path = '/', fullpath = '/home/admin/'.
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'OPTS_UTF8 ON' to mod_tls
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'OPTS_UTF8 ON' to mod_core
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'OPTS_UTF8 ON' to mod_core
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'OPTS_UTF8 ON' to mod_lang
2015-01-25 08:03:37,886 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): mod_lang/1.0: Handling OPTS UTF8 ON (current encoding is 'UTF-8')
2015-01-25 08:03:37,887 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'OPTS_UTF8 ON' to mod_log
2015-01-25 08:03:37,887 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'OPTS UTF8 ON' to mod_log
2015-01-25 08:03:37,945 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PBSZ 0' to mod_tls
2015-01-25 08:03:37,945 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PBSZ 0' to mod_core
2015-01-25 08:03:37,945 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PBSZ 0' to mod_core
2015-01-25 08:03:37,945 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'PBSZ 0' to mod_tls
2015-01-25 08:03:37,945 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'PBSZ 0' to mod_log
2015-01-25 08:03:37,988 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PROT P' to mod_tls
2015-01-25 08:03:37,988 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PROT P' to mod_core
2015-01-25 08:03:37,988 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PROT P' to mod_core
2015-01-25 08:03:37,988 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'PROT P' to mod_tls
2015-01-25 08:03:37,988 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): in dir_check_full(): path = '/', fullpath = '/home/admin/'.
2015-01-25 08:03:37,988 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'PROT P' to mod_xfer
2015-01-25 08:03:37,988 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'PROT P' to mod_log
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'CWD /domains/xxxx.fr/public_html' to mod_tls
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'CWD /domains/xxxx.fr/public_html' to mod_core
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'CWD /domains/xxxx.fr/public_html' to mod_core
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'CWD /domains/xxxx.fr/public_html' to mod_ratio
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'CWD /domains/xxxx.fr/public_html' to mod_ratio
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'CWD /domains/xxxx.fr/public_html' to mod_core
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): in dir_check_full(): path = '/domains/xxxx.fr/public_html', fullpath = '/home/admin/domains/xxxx.fr/public_html'.
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching POST_CMD command 'CWD /domains/xxxx.fr/public_html' to mod_readme
2015-01-25 08:03:38,035 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'CWD /domains/xxxx.fr/public_html' to mod_log
2015-01-25 08:03:38,081 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'TYPE I' to mod_tls
2015-01-25 08:03:38,081 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'TYPE I' to mod_core
2015-01-25 08:03:38,081 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'TYPE I' to mod_core
2015-01-25 08:03:38,081 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'TYPE I' to mod_xfer
2015-01-25 08:03:38,081 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'TYPE I' to mod_log
2015-01-25 08:03:38,125 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PASV' to mod_tls
2015-01-25 08:03:38,125 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PASV' to mod_core
2015-01-25 08:03:38,125 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'PASV' to mod_core
2015-01-25 08:03:38,125 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'PASV' to mod_core
2015-01-25 08:03:38,125 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): in dir_check_full(): path = '/domains/xxxx.fr/public_html', fullpath = '/home/admin/domains/xxxx.fr/public_html'.
2015-01-25 08:03:38,125 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): Entering Passive Mode (12,34,56,57,136,233).
2015-01-25 08:03:38,125 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching LOG_CMD command 'PASV' to mod_log
2015-01-25 08:03:38,170 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'MLSD' to mod_tls
2015-01-25 08:03:38,170 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'MLSD' to mod_core
2015-01-25 08:03:38,170 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching PRE_CMD command 'MLSD' to mod_core
2015-01-25 08:03:38,170 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): dispatching CMD command 'MLSD' to mod_facts
2015-01-25 08:03:38,170 ns1crea.xxxx.fr proftpd[26529] 12.34.56.57 (81.48.61.116[81.48.61.116]): in dir_check_full(): path = '/domains/xxxx.fr/public_html', fullpath = '/home/admin/domains/xxxx.fr/public_html'.
2015-01-25 08:03:58,172 ns1crea.xxxx.fr proftpd[26523] 12.34.56.57: scrubbing scoreboard
2015-01-25 08:03:58,172 ns1crea.xxxx.fr proftpd[26523] 12.34.56.57: ROOT PRIVS at scoreboard.c:1497
2015-01-25 08:03:58,172 ns1crea.xxxx.fr proftpd[26523] 12.34.56.57: RELINQUISH PRIVS at scoreboard.c:1500
2015-01-25 08:03:58,172 ns1crea.xxxx.fr proftpd[26523] 12.34.56.57: ROOT PRIVS at scoreboard.c:1531
2015-01-25 08:03:58,172 ns1crea.xxxx.fr proftpd[26523] 12.34.56.57: RELINQUISH PRIVS at scoreboard.c:1637
2015-01-25 08:03:58,172 ns1crea.xxxx.fr proftpd[26523] 12.34.56.57: finished scrubbing scoreboard
 
Very strange

I can connect, if I change Filezilla settings.
=> with Encryption : only use Plain FTP (insecure), it works !

So what can have been changed in this server ?
No problem at all on my different servers (always same settings).
And this problem appears from yesterday (nothing has been changed).

Thanks for your ideas !
 
Strange 2 !!

A new one has the same problem from today !
Just a test server, totally different from the other.
 
Filezilla uses an TLS connection standard since the latest version. I believe they (Directadmin/Custombuild) are working on a patch.
 
Ok, but, what is different between my servers (all have the same configurations except test server) ?
 
Hello,

I believe that issue is actually firewall related.
Ensure you've got the data ports open:
http://help.directadmin.com/item.php?id=71

Port 21 is the main connection for the login.
But data ports are 20 and 35000-35999.

iptables does have feature called ip_conntrack_ftp, in the event that you forgot to open up those ports.
However, TLS encrypt the ftp connection so that ip_conntrack_ftp can't scan the packets to figure out which port will be used for ftp, so you'd need to have them opened ahead of time.

John
 
DirectAdmin Support said:
Hello,

I believe that issue is actually firewall related.
Ensure you've got the data ports open:
http://help.directadmin.com/item.php?id=71

Port 21 is the main connection for the login.
But data ports are 20 and 35000-35999.

iptables does have feature called ip_conntrack_ftp, in the event that you forgot to open up those ports.
However, TLS encrypt the ftp connection so that ip_conntrack_ftp can't scan the packets to figure out which port will be used for ftp, so you'd need to have them opened ahead of time.

John
Click to expand...
Hey John,
this does solve the connectivity issue, but not the "Server's certificate is unknown" message - http://forum.directadmin.com/showthread.php?t=50759&highlight=filezilla
 
What kind f Certificate have you instaloled? If a cmmercial Certificate, have you also installed the CA Root Certificate?
 
You must log in or register to reply here.
Back
Top