FTP problem

cannibal · #1 08-07-2004, 01:28 PM

Hi

I don't know what is the problem on my server, no one from my clients can access FTP

they can access when I run

/sbin/iptables -F

but after hours from that the problem appear again

any one knows how can I fix it or any ideas !

thanks

cannibal

wakkow · #2 08-07-2004, 01:35 PM

What are your iptables entries before you flush it (or while ftp doesn't work)? Do a 'iptables -L'

cannibal · #3 08-07-2004, 01:42 PM

What this command will do

iptables -L

???

wakkow · #4 08-07-2004, 02:00 PM

From the man page:

Code:

       -L, --list [chain]
              List all rules in the selected chain.  If no chain is  selected,
              all  chains  are  listed.

It will list all the rules.. Since flushing the table fixes the problem, there must be an entry causing it.

cannibal · #5 08-07-2004, 02:45 PM

root@ns1 [~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain FUDP (0 references)
target prot opt source destination

Chain LA (0 references)
target prot opt source destination

Chain LD (0 references)
target prot opt source destination

Chain PROHIBIT (0 references)
target prot opt source destination

Chain PZ (0 references)
target prot opt source destination

Chain RESET (0 references)
target prot opt source destination

Chain SSH_LOG (0 references)
target prot opt source destination

Chain TELNET_LOG (0 references)
target prot opt source destination

Chain acctboth (0 references)
target prot opt source destination

wakkow · #6 08-07-2004, 02:57 PM

Is that run when FTP works or when it's broken? There are no entries which would be the case if you ran "iptables -F" to flush it.

cannibal · #7 08-07-2004, 03:08 PM

that after FTP works I entered iptables -F before it

cannibal · #8 08-09-2004, 07:32 AM

I run iptables -L when it's broken

it shows like chacking IPs one by one not like the massege that I wrote up

any idea !

wakkow · #9 08-09-2004, 12:46 PM

To make sure I understand, it shows a listing of IP's? Do any of them say "DROP" in the first column? Any that say that means the firewall is droppnig those packets. You must have a saved entry in there that's causing the problem, but I'm not sure how it showed up in the first place or why it reoccurs.

You can try finding which entry is dropping packets to port 21, delete that entry and run 'iptables-save'.. It's hard to say without being on your machine.

cannibal · #10 08-11-2004, 12:57 AM

Yha

There are alot of DROP in the first column

how can I fix it ??

cannibal · #11 08-17-2004, 06:15 AM

from LogWatch

Dropped 417 packets on interface eth0

zoomx · #12 08-18-2004, 03:48 AM

How can I find which entry is dropping packets to port 21

and how can I delet it ??

CArmstrong · #13 08-18-2004, 02:05 PM

What distribution? If RedHat,

Code:

cat /etc/sysconfig/iptables

At least for me, that's the script that's imported into iptables on system startup. Post the contents of that and we can help you edit.

cannibal · #14 08-20-2004, 08:23 AM

Its RedHat Fedora

cat /etc/sysconfig/iptables

cat: /etc/sysconfig/iptables: No such file or directory

wakkow · #15 08-20-2004, 11:29 AM

If you run "iptables -F" to clear the firewall then "iptables-save" or "/sbin/service iptables save" to save the empty firewall.. I wouldn't recommend doing this since it will completely clear all your entries.. But you've already been running that way anyways.

FTP problem

Sponsored Links

Advertise Here

Internet Services

Web Development

Digital Marketing

Consumer Tech