- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- FTP - "Cant build Data Connection" Error
Operating System - HP-UX
1819796
Members
3120
Online
109607
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-15-2005 08:08 PM
тАО12-15-2005 08:08 PM
Morning all!
Ive been trying to ftp between two servers and am having a wierd experience. The transer works in one direction, but not the other.
ALthough I can log in with username and password, and cd to a directory, when I do the put it hangs for a few moments and then returns "Can't build data connection: connection timed out"
The network team are happy with the network and firewalls, and a ping also works. I foind it strange that this error only occors in one direction.
Out of 5 servers that the one server must send files to, 2 are having this issue and the other 3 are fine.
Any ideas please?
Thanks.
Ive been trying to ftp between two servers and am having a wierd experience. The transer works in one direction, but not the other.
ALthough I can log in with username and password, and cd to a directory, when I do the put it hangs for a few moments and then returns "Can't build data connection: connection timed out"
The network team are happy with the network and firewalls, and a ping also works. I foind it strange that this error only occors in one direction.
Out of 5 servers that the one server must send files to, 2 are having this issue and the other 3 are fine.
Any ideas please?
Thanks.
Solved! Go to Solution.
6 REPLIES 6
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-15-2005 09:19 PM
тАО12-15-2005 09:19 PM
Re: FTP - "Cant build Data Connection" Error
Paul,
I sssume your error code is 425.
This may be down to either:
1. Problem with access to port 20 and 21, due to firewall
The client attaches to port 21 on the server,who then opens a connection back to the client.
2. tcp problems
3. ftp software
Regards
I sssume your error code is 425.
This may be down to either:
1. Problem with access to port 20 and 21, due to firewall
The client attaches to port 21 on the server,who then opens a connection back to the client.
2. tcp problems
3. ftp software
Regards
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-15-2005 09:45 PM
тАО12-15-2005 09:45 PM
Solution
FTP is a tricky protocol to get through firewalls, because it requires several connections: the first is the control connection, which goes from the FTP client to the FTP server's port 21. This seems to work in your case.
The problem is with the data connections, which are used to transfer the files (or even the directory listings). The data connections have no specific ports, and in some cases the _server_ opens the data connection to the _client_.
See this page for more detail:
http://slacksite.com/other/ftp.html
Actually, even that description might not be entirely correct: it says that in active mode FTP, the server forms the data connection from port 20 of the server to a random port on the client, but a modern FTP servers MAY use a random port number at the server end too.
This means that the firewall MUST be able to read the FTP commands in the control connection to be able to properly handle all the possibilities.
This might require more configuration at the firewall, and the simplest firewalls might not be able to do it at all.
If the firewall is not aware of the FTP protocol, the network team should be able to make one of the FTP modes work for you by opening a more "loose" set of ports - and they should tell you which mode is allowed.
The problem is with the data connections, which are used to transfer the files (or even the directory listings). The data connections have no specific ports, and in some cases the _server_ opens the data connection to the _client_.
See this page for more detail:
http://slacksite.com/other/ftp.html
Actually, even that description might not be entirely correct: it says that in active mode FTP, the server forms the data connection from port 20 of the server to a random port on the client, but a modern FTP servers MAY use a random port number at the server end too.
This means that the firewall MUST be able to read the FTP commands in the control connection to be able to properly handle all the possibilities.
This might require more configuration at the firewall, and the simplest firewalls might not be able to do it at all.
If the firewall is not aware of the FTP protocol, the network team should be able to make one of the FTP modes work for you by opening a more "loose" set of ports - and they should tell you which mode is allowed.
MK
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-15-2005 10:08 PM
тАО12-15-2005 10:08 PM
Re: FTP - "Cant build Data Connection" Error
hi .
just try to create /usr/bin directory under the ftp home directory. and copy the nessasary executables like ls, cd, pwd and all to these directory
just try to create /usr/bin directory under the ftp home directory. and copy the nessasary executables like ls, cd, pwd and all to these directory
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-15-2005 10:08 PM
тАО12-15-2005 10:08 PM
Re: FTP - "Cant build Data Connection" Error
You can also try with passive mode FTP, if the servers support it. Passive changes the (weird) FTP convention of client connecting to port 21, then server connecting to client from port 20, for a more normal scheme where all connections start from the client.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-15-2005 10:09 PM
тАО12-15-2005 10:09 PM
Re: FTP - "Cant build Data Connection" Error
I'm almost certain it is the firewalls.
Ive tested ftp to the server giving the error from another server in the dadacenter ant its workef fine, so its only the connection from one specific point thats the problem. Still strange that transfers in the oposite direction, thru the same firewalls work.
Ive tested ftp to the server giving the error from another server in the dadacenter ant its workef fine, so its only the connection from one specific point thats the problem. Still strange that transfers in the oposite direction, thru the same firewalls work.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО12-19-2005 04:30 AM
тАО12-19-2005 04:30 AM
Re: FTP - "Cant build Data Connection" Error
Paul - you have now experienced first hand why some folks - who aren't even "grey hats" do not like firewalls at all. If they aren't stateful they cannot deal with stuff like FTP transparantly, and if they are stateful, they tend to have limited state and so are unwilling to deal with long-lived connections.
there is no rest for the wicked yet the virtuous have no pillows
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Learn About
News and Events
Support
© Copyright 2025 Hewlett Packard Enterprise Development LP