Actions
Bug #2028
closed
Passive FTP with the same data port only works once
Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
FTP Proxy
Target version:
-
Start date:
11/28/2011
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.0
Affected Architecture:
Description
Using FTP through pfSense to a server that uses always the same port for passive data connections only works for the first data transfer.
After bypassing the pfSense the data transfer works as expected.
To reproduce it use vsftpd with pasv_max_port=40000 and pasv_min_port=40000.
After the first data transfer you'll get a timeout for the next attempt.
- ftp 10.1.1.91
Connected to 10.1.1.91.
220 FTP service ready.
Name (10.1.1.91:root): anonymous
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> pass
Passive mode on.
ftp> ls -l
227 Entering Passive Mode (10,1,1,91,156,64)
150 Here comes the directory listing.
226 Directory send OK.
ftp> ls -l
227 Entering Passive Mode (10,1,1,91,156,64)
ftp: connect: Connection timed out
ftp> bye
421 Timeout.
Updated by Chris Buechler almost 10 years ago
- Status changed from New to Resolved
FTP proxy is gone so this is no longer an issue.
Actions