HPE Community
Operating System - HP-UX
1844169 Members
2713 Online
110229 Solutions
New Discussion

Re: proftpd errors

 
SOLVED
Go to solution
Juan M Leon
Trusted Contributor

‎07-27-2007 02:13 AM

‎07-27-2007 02:13 AM

proftpd errors

Hello, I am not familiar with proftp, I need some help. I just confgured a proftpserver I followed all the instructiions.
I am able to loing using the allowed account, but I am unable to execute a listing directory
once I enter "ls" the screen hungs and then I receive the following error.

ftp> ls
200 PORT command successful
425 Unable to build data connection: Connection timed out

in the syslog I see the following entry.

Jul 27 09:40:54 host proftpd[16421]: host (hotsb [xxx.xxx.xxx.xxx]) - PRIVS_RELINQUISH: unable to setregid(session.gid, PR_ROOT_GID): Not owner


Any suggestions.

Thank you
Juan
0 Kudos
Reply
7 REPLIES 7
Patrick Wallek
Honored Contributor

‎07-27-2007 02:17 AM

‎07-27-2007 02:17 AM

Solution

Re: proftpd errors

The error sounds as if it is having trouble talking on port 20.

Make sure both FTP ports, data port is TCP port 20 and control port is TCP port 21, are allowed through a firewall, if a firewall is involved.

Reply
Charles H Emery
Advisor

‎07-27-2007 02:24 AM

‎07-27-2007 02:24 AM

Re: proftpd errors

Hello Juan,
I do not know much about ProFTP specifically,
However, try here for example configurations: http://www.proftpd.org/docs/example-conf.html
Reply
Juan M Leon
Trusted Contributor

‎07-27-2007 02:29 AM

‎07-27-2007 02:29 AM

Re: proftpd errors

Patric thank you for your prompt response.
the firewall is allowing the connection.
I get a successful login.

- I am not following your suggestion about port 20. I believe the configuration file is set to port 21.

# Port 21 is the standard FTP port.
Port 21

0 Kudos
Reply
Patrick Wallek
Honored Contributor

‎07-27-2007 02:34 AM

‎07-27-2007 02:34 AM

Re: proftpd errors

FTP actually uses 2 TCP ports.

Port 20 is the FTP DATA port.
Port 21 is the FTP command port.

Have a look at an /etc/services file and you will see 2 entries for FTP.

For normal FTP you MUST allow BOTH port 20 and 21.

You could try PASSIVE FTP and see if you can get away with just port 21 in that case.
Reply
Juan M Leon
Trusted Contributor

‎07-27-2007 02:39 AM

‎07-27-2007 02:39 AM

Re: proftpd errors

Patrick,
I checked the services files. And I see both ports set in the file
ftp-data 20/tcp # File Transfer Protocol (Data)
ftp 21/tcp # File Transfer Protocol (Control)
tftp 69/udp # Trivial File Transfer Protocol
sftp 115/tcp # Simple File Transfer Protocol
bftp 152/tcp # Background File Transfer Protocol
ftp-ftam 8868/tcp # FTP->FTAM Gateway


Question, do I need both ports allow in the firewall?


Charles,

Thanks for the info. I comparing the examples with my config file.
0 Kudos
Reply
Patrick Wallek
Honored Contributor

‎07-27-2007 02:41 AM

‎07-27-2007 02:41 AM

Re: proftpd errors

Yes, that would be my recommendation.
Reply
Juan M Leon
Trusted Contributor

‎07-27-2007 03:24 AM

‎07-27-2007 03:24 AM

Re: proftpd errors

Patrick,

I was able to successfully list directories from another computer with in diff network.
That solves my 425 error.

Do y ou have any ideas on the entries in the syslog:
Jul 27 09:40:54 host proftpd[16421]: host (hotsb [xxx.xxx.xxx.xxx]) - PRIVS_RELINQUISH: unable to setregid(session.gid, PR_ROOT_GID): Not owner
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.