Re: FTP Problems

Re: FTP Problems

[Hollis R Blanchard]

On 3 Jan 1999, Sam Quigley wrote:

> > OK, so it can't open the RPMS database, right? Can you switch to virtual
> > console 3 (Cmd-F3) or 4 and see if there's a specific error listed? That
> > might be a little more helpful than the installer errors message.
> 
> I have this problem too: the error reported is, on console 3:
> 
> * ugFindUpgradePackages() ...
> * failed opening /mnt/var/lib/rpm/packages.rpm
> 
> the installer warns that 'an error occurred during step "Choose
> packages to upgrade"', but also has a stray line reading
> "/mnt/var/lib/rpm/nameindex.rpm:" on the background.  (this is,
> presumably, an error message from something other than the installer)
> 
> I can cat packages.rpm fine from the console.

Hmm. I am *not* an expert on the RedHat installer, but what's in packages.rpm?
And how about nameindex.rpm?

I expect we'll get a little help once people get settled after MacWorld. Which
reminds me, I was hoping I could get a list of the various people working on
R5 and what they're doing. Just curious, plus it would make it easy to have a
dialogue with the person(s) working on the RedHat installer.

-Hollis



[[ This message was sent via the linuxppc-dev mailing list. Replies are ]]
[[ not forced back to the list, so be sure to  Cc linuxppc-dev  if your ]]
[[ reply is of general interest. To unsubscribe from linuxppc-dev, send ]]
[[ the message 'unsubscribe' to linuxppc-dev-request@lists.linuxppc.org ]]

Re: FTP Problems

[Martin Costabel]

Hollis R Blanchard wrote:
> 
> On 3 Jan 1999, Sam Quigley wrote:
> 
> > > OK, so it can't open the RPMS database, right? Can you switch to virtual
> > > console 3 (Cmd-F3) or 4 and see if there's a specific error listed? That
> > > might be a little more helpful than the installer errors message.
> >
> > I have this problem too: the error reported is, on console 3:
> >
> > * ugFindUpgradePackages() ...
> > * failed opening /mnt/var/lib/rpm/packages.rpm
> >
> > the installer warns that 'an error occurred during step "Choose
> > packages to upgrade"', but also has a stray line reading
> > "/mnt/var/lib/rpm/nameindex.rpm:" on the background.  (this is,
> > presumably, an error message from something other than the installer)
> >
> > I can cat packages.rpm fine from the console.

I saw such error messages when the installer had some mount problems. I
think they went away with the glibc-2.0.108 libraries. But I am not sure
about this.
 
> Hmm. I am *not* an expert on the RedHat installer, but what's in packages.rpm?
> And how about nameindex.rpm?
> 
> I expect we'll get a little help once people get settled after MacWorld. Which
> reminds me, I was hoping I could get a list of the various people working on
> R5 and what they're doing. Just curious, plus it would make it easy to have a
> dialogue with the person(s) working on the RedHat installer.

This might be a good idea, but seeing how they have worked in the past,
my guess is that they already have some (almost) finished perfectly
working installer sitting around somewhere but didn't have the time to
copy it to the right place. So we shouldn't get heated up too much about
this question.
 
> Martin's ramdisks don't *fix* anything, they just give you the tools you need
> so *you* can fix it.

Yes, thank you, Hollis, that's what I intended. I am just a dumb user
like everyone else here in this thread. I just happened to spend some of
my Xmas holidays on trying to figure out how these ramdisk images are
constructed. And I managed to install pre-R5 some time ago using the
supp.img floppy.

But now holidays are over, I have to go back to work. 

See you later
--
Martin

[[ This message was sent via the linuxppc-dev mailing list. Replies are ]]
[[ not forced back to the list, so be sure to  Cc linuxppc-dev  if your ]]
[[ reply is of general interest. To unsubscribe from linuxppc-dev, send ]]
[[ the message 'unsubscribe' to linuxppc-dev-request@lists.linuxppc.org ]]

FTP problems

[Del Winiecki]

Hi,
Everything seems to work fine except FTP via NAT.
The interfaces that are not natted handle ftp normally.
When I do ftp from inside where the connection goes thru nat, I get an
instant establisment of connection,syn,ack,syn-ack followed by a 30
second wait...then all works normally from that point. This 30 second
delay is constant with each new ftp connection. I have tried about
everything in the iptables script.
Passive ftp does the same thing.
All the other protocols seem okay including IRC.
I am running RedHat kernel 2.4.18-24.7.x i686, iptables version 1.2.5,
all the latest RedHat updates.

I have loaded:
ip_conntrack
ip_conntrack_ftp
ip_conntrack_irc
ip_table_nat
ip_nat_ftp
ip_nat_irc
ipt_state
ipt_limit
ipt_REJECT
ipt_LOG
ipt_unclean
ipt_mac
iptable_filter
iptable_mangle
iptable_nat

Should the ftp connection show up in /proc/net/ip_conntrack ? It does
NOT show in there.
Is there a problem with the ipt_nat_ftp module?
-Del

Re: FTP problems

[Ralf Spenneberg]

Am Don, 2003-02-27 um 21.23 schrieb Del Winiecki:
> Hi,
> Everything seems to work fine except FTP via NAT.
> The interfaces that are not natted handle ftp normally.
> When I do ftp from inside where the connection goes thru nat, I get an
> instant establisment of connection,syn,ack,syn-ack followed by a 30
> second wait...then all works normally from that point. This 30 second
> delay is constant with each new ftp connection. I have tried about
> everything in the iptables script.
> Passive ftp does the same thing.
Might be an issue with identd. Many ftp servers do reverse identd lookups on 
the client. If you drop these on your firewall they have to wait for the timeout.
Reject identd on your firewall:
iptables -A INPUT -p tcp --dport 113 -j REJECT

Other possibility is reverse DNS lookup by the FTP server. 

Cheers,

Ralf
 
> 
-- 
Ralf Spenneberg
RHCE, RHCX

IPsec/PPTP Kernels for Red Hat Linux:  
http://www.spenneberg.com/.net/.org/.de
Honeynet Project Mirror:                http://honeynet.spenneberg.org
Snort Mirror:                           http://snort.spenneberg.org

Re: FTP problems

[Robert Allmeroth]

hello,

I had the same problem.. but it was a DNS problem. Most FTP servers do
a reverse lookup of your IP address and if that fails it takes a while.

Robert

> Everything seems to work fine except FTP via NAT.
> The interfaces that are not natted handle ftp normally.
> When I do ftp from inside where the connection goes thru nat, I get an
> instant establisment of connection,syn,ack,syn-ack followed by a 30
> second wait...then all works normally from that point. This 30 second
> delay is constant with each new ftp connection. I have tried about
> everything in the iptables script.
> Passive ftp does the same thing.
> All the other protocols seem okay including IRC.
> I am running RedHat kernel 2.4.18-24.7.x i686, iptables version 1.2.5,
> all the latest RedHat updates.

> I have loaded:
> ip_conntrack
> ip_conntrack_ftp
> ip_conntrack_irc
> ip_table_nat
> ip_nat_ftp
> ip_nat_irc
> ipt_state
> ipt_limit
> ipt_REJECT
> ipt_LOG
> ipt_unclean
> ipt_mac
> iptable_filter
> iptable_mangle
> iptable_nat

> Should the ftp connection show up in /proc/net/ip_conntrack ? It does
> NOT show in there.
> Is there a problem with the ipt_nat_ftp module?

FTP Problems

[Scott Taylor]

Hello,

I have been using MS FTP from behind my firewall for ages, now all of a
sudden it's not working, even though I am using passive mode.

I have not made any changes to my firewall.

My Linux boxen, behind the firewall, can FTP no problem, only Win2K and
WinXP workstations have stopped working in the last month or so.

At first I thought it was my Debian FTP server, but then I tried other FTP
servers and get the same thing.

Login works, but not ls, or any file transfers.

230 User lo logged in.
ftp> ls
500 Illegal PORT command
425 Unable to build data connection: Connection refused

If I turn Passive mode off in the Control Panel -> Internet Options, then
I can't even log in.

Any idea what is going on?

Thanks.

--
Scott