Drobo

Proftpd - External Issues (Have logs + config) and Firewall Rules included:

I am trying to setup my Proftp and it doesn’t seem to be working. I been spending countless hours trying to get this to work external. This is the really the first time, I actually spent using a Unix/Linux type of system.

I work as an IT Engineer for Windows Systems.

I am trying to set this FTP server to work external, so I can download and upload files to my home Drobo.

I will include my config file and log file:

U-87 = my home computer
U-97 = Drobo

I can connect internal at my house, but when I am at the office I am not able to do so. I have Verizon Fios, and I went into the Firewall and went to port forwarding. Took my IP off my Drobo and port forwarded to the 60000 - 60100 ports. I try to connect using Filezilla and doesn’t work.

10.16.60.20
Destination Ports 60000-60100
TCP Any -> 60000-60100 All Broadband Devices Active

proftpd.log:
[i] - setting default address to 10.16.60.20

  • warning: handling possibly truncated configuration data at line 56 of ‘/mnt/DroboFS/Shares/DroboApps/proftpd/etc/proftpd.conf’
    U-97 - 10.16.60.20:21 masquerading as X.x.x.x
    Mar 30 05:04:01 U-97 proftpd[10272] U-97: ProFTPD 1.3.3d (maint) (built Thu Mar 24 2011 22:09:40 CET) standalone mode STARTUP
    Mar 30 05:04:13 U-97 proftpd[10395] U-97 (u-87.X.local[10.16.60.2]): FTP session opened.
    Mar 30 05:04:13 U-97 proftpd[10395] U-97 (u-87.X.local[10.16.60.2]): wtmp /var/log/wtmp: No such file or directory
    Mar 30 05:04:13 U-97 proftpd[10395] U-97 (u-87.X.local[10.16.60.2]): Preparing to chroot to directory ‘/mnt/DroboFS/Shares/DATA’
    Mar 30 05:04:13 U-97 proftpd[10395] U-97 (u-87.X.local[10.16.60.2]): USER crr: Login successful.
    Mar 30 05:04:38 U-97 proftpd[10395] U-97 (u-87.X.local[10.16.60.2]): wtmp /var/log/wtmp: No such file or directory
    Mar 30 05:04:38 U-97 proftpd[10395] U-97 (u-87.X.local[10.16.60.2]): FTP session closed.[/i]

Proftpd.conf:
# see http://ubuntuforums.org/showthread.php?t=79588
DefaultRoot /mnt/DroboFS/Shares/DATA/
ServerName “U-97”
ServerType standalone
DefaultServer on
DeferWelcome on
Port 21
UseIPv6 off
Umask 022 022
MaxInstances 5
TimeoutLogin 60
TimeoutIdle 120
TimeoutNoTransfer 300
TimeoutStalled 300
User nobody
Group nobody
RootLogin off
UseFtpUsers off
DefaultAddress 10.16.60.20
MasqueradeAddress X.X.X.X
PassivePorts 60000 60100
AllowForeignAddress on
AuthUserFile /mnt/DroboFS/Shares/DroboApps/proftpd/etc/passwd
AuthGroupFile /mnt/DroboFS/Shares/DroboApps/proftpd/etc/group
DisplayLogin welcome.msg
DisplayChdir readme
AllowOverwrite on
AllowStoreRestart on
PidFile /mnt/DroboFS/Shares/DroboApps/proftpd/var/run/proftpd.pid
SystemLog /mnt/DroboFS/Shares/DroboApps/proftpd/var/log/proftpd.log
ExtendedLog /mnt/DroboFS/Shares/DroboApps/proftpd/var/log/auth.log AUTH

AllowUser zs, crr


DenyAll

<Anonymous /mnt/DroboFS/Shares/DATA>
MaxClients 3 “Sorry, max %m users – try again later”
User anonymous
Group nobody

DenyAll


IgnoreHidden on



TLSEngine on
TLSLog /mnt/DroboFS/Shares/DroboApps/proftpd/var/log/tls.log
TLSProtocol TLSv1
TLSRequired off
TLSRSACertificateFile /mnt/DroboFS/Shares/DroboApps/proftpd/etc/server.crt
TLSRSACertificateKeyFile /mnt/DroboFS/Shares/DroboApps/proftpd/etc/server.key
TLSVerifyClient off

FILEZILLA LOG:

Status: Connecting to X.X.X.X:60001…
Status: Connection established, waiting for welcome message…
Response: 220 ProFTPD 1.3.3d Server ready.
Command: USER crr
Response: 331 Password required for crr
Command: PASS ********
Response: 230 User crr logged in
Command: SYST
Response: 215 UNIX Type: L8
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: MFMT
Response: TVFS
Response: AUTH TLS
Response: MFF modify;UNIX.group;UNIX.mode;
Response: MLST modify*;perm*;size*;type*;unique*;UNIX.group*;UNIX.mode*;UNIX.owner*;
Response: PBSZ
Response: PROT
Response: REST STREAM
Response: SIZE
Response: 211 End
Status: Connected
Status: Retrieving directory listing…
Command: PWD
Response: 257 “/” is the current directory
Command: TYPE I
Response: 200 Type set to I
Command: PORT 10,16,60,20,234,138
Response: 200 PORT command successful
Command: MLSD
Response: 425 Unable to build data connection: Connection refused
Error: Failed to retrieve directory listing

** Response: 425 Unable to build data connection: Connection refused
Error: Failed to retrieve directory listing *** I know its part of the masquarade the IP address that is causing the issue, but I need that to connect external?? ****

Dumb question, but is your FTP client configured to use passive mode?