Slacker Posted October 6, 2003 Share Posted October 6, 2003 I'm trying to setup an FTP server on my computer so that a friend can drop a particular file. I am connected wirelessly to a linksys router... The network connection seems good. I have also set my computer's IP address as the DMZ host. I gave my friend a similar address to this: ftp://name:password@x.x.x.x:21. I am using Cerberus FTP server for software and I think that there should be no further configuration aside from making a user with a root directory... The IP address that I gave to him is the IP address assignmed to the WAN port on the router. Here is what's happening... he is connecting with Mac OS X, and typing in the address that I give to him... it tells him that it found the server and is trying to connect... then it counts down from 120 to 0... On my end, the log says that he did connect and that the password was accepted, then is says that connection has times out after about 2 minutes. He is not using any firewall software, and the OS X firewall is turned off. I'm not sure if he is using a router or not, but I can't see this as making a huge difference... ANyone have any ideas? Link to comment Share on other sites More sharing options...
WS togermano Posted October 6, 2003 Share Posted October 6, 2003 some isp block port 21 try changing the port to something else like 42 or something Link to comment Share on other sites More sharing options...
Frank Posted October 6, 2003 Share Posted October 6, 2003 some isp block port 21 try changing the port to something else like 42 or something he said his server did show a log of a connection, but he said the log showed password didn't work, so I don't think it is the ISP blocking the port. Slacker: do you have a computer on your network that you could try and log in using your local IP? If you do, and that works, try another PC on the outside of your router (not MAC) and see if it works. Link to comment Share on other sites More sharing options...
Slacker Posted October 6, 2003 Author Share Posted October 6, 2003 Well, it did work fine internally... so I'm testing to see if it will work better on another port. No, password does not seem to be an issue since it did say that password was accepted. I'm going to test port 80 from a university computer today outside of my LAN to see if that works any better... I mean, I think that port 80 is for web pages, so I think that I would have some other problems if port 80 were blocked too... Link to comment Share on other sites More sharing options...
Pink Floyd Veteran Posted October 6, 2003 Veteran Share Posted October 6, 2003 in your 192.168.1.1 settings find the forwarting setup then forward your port 21 to your ip, usually .100 or .101 depending how many pc u got... remember, u have to forward a ort to internet if you one the port to be visible to internet Link to comment Share on other sites More sharing options...
Frank Posted October 6, 2003 Share Posted October 6, 2003 Slacker: If you are getting a log in your router when he tries to connect about his connection.....then it is not your ISP blocking a port. If they did block it, it wouldn't show up in your log. Another way to test this, is to go on a connection without a firewall (othewr then your house), and go to the DOS prompt, and type in "telnet 0.0.0.0 port#" (0.0.0.0 = Your IP : port# = the port you want to test) if you get a error message, you are not getting connected to the port properly. If it goes blank, you are connecting in. This should tell you whether or not the port is or isn?t blocked and if your router is working properly. Link to comment Share on other sites More sharing options...
MxxCon Posted October 6, 2003 Share Posted October 6, 2003 Slacker, either if your friend doesn't have any firewalls or routers tell him to connect using PORT mode(not PASV) or on your router you need to forward 2 sets of ports. control connection port: often port 21..or whatever port people use to connect to your site data connection port range: this port range is used for actual ftp listing and file transfers. it can be any range 1-65535, obviously it mustn't be a port already in use, and it's best to use range above 1024. say 7000-8000 is a good number :) Link to comment Share on other sites More sharing options...
Slacker Posted October 6, 2003 Author Share Posted October 6, 2003 I have my computer set as the DMZ host, and port 21 fowarded to my IP address for both TCP and UDP. Link to comment Share on other sites More sharing options...
Frank Posted October 6, 2003 Share Posted October 6, 2003 Slacker: If you are only using your PC for the FTP server, you don't need to put it on the DMZ port. All you need to do is forward the port to your private IP address (EX: 192.168.0.3). If you are not using it for anything else, putting it on the DMZ port is just waiting for a virus to take advantage of the newest Microsoft security hole, or someone to pick up your address with a bot, and start serving on IRC from your PC. Link to comment Share on other sites More sharing options...
Recommended Posts