Ftp issues

rsw686

Is the FTP proxy turned on, on the LAN interface? Make sure the box that reads disable ftp userland proxy is not checked. If I read what your saying correctly you can't access external FTP sites from behind the pfsense box.

xibalba

the FTP proxy is enabled on the LAN interface and WAN interface. I can ftp into these sites without a hitch, however to get a directory listing or to be able to download a file i must switch ftp into active mode, in passive mode it will just time out.

rsw686

What version of pfsense. Also instead of fetch try just ftp sitename and then go through the commands manually to grab the file. When in passive mode you will see output like

227 Entering Passive Mode (68,100,53,135,235,158)
150 Here comes the directory listing.
public_html
226 Directory send OK.

The numbers in parenthesis are the ip address and I assume port numbers. When I originally had problems with ftp acess from outside to a server behind pfsense this was showing my private ip. When I switched to RC3 I had no more problems.

xibalba

using RC3

bash-2.05b# ftp ftp.csx.cam.ac.uk
Connected to zircon.csx.cam.ac.uk.
220 ProFTPD 1.2.10rc1 Server (University Computing Service ftp server) [zircon.csx.cam.ac.uk]
Name (ftp.csx.cam.ac.uk:reza): anonymous
331 Anonymous login ok, send your complete email address as your password.
Password:
230-      UNIVERSITY OF CAMBRIDGE ANONYMOUS FTP SERVER

…...
......
230 Anonymous access granted, restrictions apply.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> cd pub/software/programming/pcre
250 CWD command successful
ftp> ls
229 Entering Extended Passive Mode (|||52473|)
^C
receive aborted. Waiting for remote to finish abort.
ftp> passive
Passive mode: off; fallback to active mode: off.
ftp> ls
200 EPRT command successful
150 Opening ASCII mode data connection for file list
drwxr-xr-x  2 ph10    ftpstaff    4096 Sep 20 09:09 Contrib
-rw-r--r--  1 ph10    ph10        2201 Dec 11  2003 Public-Key
drwxr-xr-x  2 ph10    ftpstaff    4096 Oct  5 15:07 Testing
-rw-r--r--  1 ph10    ftpstaff  261609 Jan  2  2002 pcre-3.9.tar.bz2
......
......
-rw-r--r--  1 ph10    ph10          280 Jul  5 11:28 pcre-6.7.tar.gz.sig
226 Transfer complete.
ftp>

sullrich

Upgrade to 1.0-RC3e

srs

I'm using 1.2rc1 and still having these ftp issues; simple cant read any ftp directory from my lan; any idea?

hoba

http://wiki.pfsense.com/wikka.php?wakka=FTPTroubleShooting

srs

3. Switch to an alternative firewalling system

:(
???

I would not like to do that;

and that wiki page sugestions doesnt worked to me…

sullrich

Turn off the ftp helper at interfaces -> LAN.

srs

it worked

;D ;D :D :D