From: David G. <dgo...@ma...> - 2002-05-10 15:51:30
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ipchains input -p tcp -d 64.113.72.222 ftp -j ACCEPT needed to be higher in the chain, so it works now. the thing that now baffles me is that i thought network.conf was supposed to take care of adding the ipchains rule when you added it to network.conf. it added it automatically when i port-forwarded http and ssh. anyone know why i had to manually add it this time? tia. <network.conf> INTERN_SERVERS=" tcp_${EXTERN_IP}_www_192.168.1.11_www tcp_${EXTERN_IP}_ssh_192.168.1.12_ssh tcp_${EXTERN_IP}_ftp_192.168.1.12_ftp tcp_${EXTERN_IP}_20_192.168.1.12_20 " </network.conf> :.:. ::: :: .::. .:.. . :..: http://complex.wox.org -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com> iQA/AwUBPNvseNemHuGGnm+XEQLcPwCfTgDOqK725eGMcpiy/LS7v2IT6v4AoJIk xovxiSYQwMq/d/v4RyavD34y =Lqb4 -----END PGP SIGNATURE----- |
From: C.Dummy <cd...@b2...> - 2007-06-13 13:22:25
|
Hello . I'm running single floppy Bering-u 3.0 distro. I'm thinking about adding small HDD and setting up ftp server on Bering box. I'd like to have this server on demand so I can start or stop server any time I want. Can this be done? Are there any docs or guide about that? What server would be the best to do that? Tftpd, vsftpd? Thanks for great distro and help. Andrey |
From: Eric S. <E.S...@in...> - 2007-06-13 13:46:20
|
Hello Andrey, That shouldn't be any problem. You can use the vsftpd.lrp package, which is a small, secure and fast ftp daemon (tftpd.lrp contains a Tftp daemon, which is something different). Configuration details can be found at the follwoing link: http://vsftpd.beasts.org/ You can start and stop the daemon via ssh by doing /etc/init.d/vsftpd stop / start Eric > Hello . I'm running single floppy Bering-u 3.0 distro. I'm thinking > about adding small HDD and setting up ftp server on Bering box. I'd like to > have this server on demand so I can start or stop server any time I want. > Can this be done? Are there any docs or guide about that? What > server would be the best to do that? Tftpd, vsftpd? Thanks for great distro > and help. Andrey > > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > ------------------------------------------------------------------------ > leaf-user mailing list: lea...@li... > https://lists.sourceforge.net/lists/listinfo/leaf-user > Support Request -- http://leaf-project.org/ > > |
From: C.Dummy <cd...@b2...> - 2007-06-20 15:56:05
|
Hello. Thanks for advice. I installed vsftpd and server is running. I edited vsftpd.conf so local_enable=YES I even changed (not sure what it is) local_unmask=022 Than I created user adduser cdummy -g ftp with password. When I try to ftp to server I'm not getting any respond from server. Just "can't connect, can't login still trying". My idea was: 1. Ssh to BeringU box.(no problem) 2. Adduser cdummy with group ftp (no problem) 3. Mount -t ext3 /dev/hda1 /home/ftp (problems) 4. ftp to vsftpd server as local user cdummy (problems) So after I restart BeringU box all above is gone. When I boot from floppy/cd kernel finds hda: Fujitsu etc..). But when I do mount -t ext2 /dev/hda1 /home/ftp I'm getting: mount: Mounting /dev/hda1 on /home/ftp failed: No such device Any idea why there is no response from the server and why Ican't mount my hda1? I tried to edit fstab same effect. Thanks for help Andrey Eric Spakman wrote: > Hello Andrey, > > That shouldn't be any problem. You can use the vsftpd.lrp package, which > is a small, secure and fast ftp daemon (tftpd.lrp contains a Tftp daemon, > which is something different). Configuration details can be found at the > follwoing link: http://vsftpd.beasts.org/ > > You can start and stop the daemon via ssh by doing /etc/init.d/vsftpd stop > / start > > Eric > > >> Hello . I'm running single floppy Bering-u 3.0 distro. I'm thinking >> about adding small HDD and setting up ftp server on Bering box. I'd like to >> have this server on demand so I can start or stop server any time I want. >> Can this be done? Are there any docs or guide about that? What >> server would be the best to do that? Tftpd, vsftpd? Thanks for great distro >> and help. Andrey >> >> >> ------------------------------------------------------------------------- >> This SF.net email is sponsored by DB2 Express >> Download DB2 Express C - the FREE version of DB2 express and take >> control of your XML. No limits. Just data. Click to get it now. >> http://sourceforge.net/powerbar/db2/ >> ------------------------------------------------------------------------ >> leaf-user mailing list: lea...@li... >> https://lists.sourceforge.net/lists/listinfo/leaf-user >> Support Request -- http://leaf-project.org/ >> >> >> > > > > |
From: Bodo M. <bo...@bo...> - 2007-06-22 20:49:52
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 C.Dummy schrieb: > When I try to ftp to server I'm not getting any respond from server. > Just "can't connect, can't login still trying". Hello Andrey, if you have shorewall running you might have to open the firewall for FTP connections. > When I boot from floppy/cd kernel finds hda: Fujitsu etc..). But when I do > mount -t ext2 /dev/hda1 /home/ftp > I'm getting: > mount: Mounting /dev/hda1 on /home/ftp failed: No such device Do you use initrd_ide.lrp? Did you load any modules for IDE disk? Bodo -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGfDXgnMz9fgzDSqcRAvUhAJ9/PafIu0lfrGsW+S5qP3Qkr4b3MQCgiY6p c1wLWGcsj78eHRbfjp4+GMg= =Im78 -----END PGP SIGNATURE----- |
From: C.Dummy <cd...@b2...> - 2007-06-23 03:52:56
|
Thanks for response. You are right shorewall is blocking ftp server. I'm not sure what line I should put in rules. I tried: FTP/ACCEPT net fw than FTP/DNAT net loc:192.168.1.254 None of them work when I try to ftp from outside. I'm getting message socket connected waiting for welcome message.. When I added FTP/ACCEPT loc fw I can ftp to BeringU box from my local LAN but I can't upload.. As for mounting. I Google on the Internet that I'm missing ext3 module. So I added ext3.o but I'm getting so many unresolved symbols that I tried vfat (comes with distro) and here I've got error Attempting to create a too large file system. With help of Google again I found command mkfs.vfat -F 32 /dev/hda1 and this worked. After formating the drive I was able to mount. Thanks for help Andrey Bodo Meissner wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > C.Dummy schrieb: > > >> When I try to ftp to server I'm not getting any respond from server. >> Just "can't connect, can't login still trying". >> > > Hello Andrey, > > if you have shorewall running you might have to open the firewall for FTP connections. > > >> When I boot from floppy/cd kernel finds hda: Fujitsu etc..). But when I do >> mount -t ext2 /dev/hda1 /home/ftp >> I'm getting: >> mount: Mounting /dev/hda1 on /home/ftp failed: No such device >> > > Do you use initrd_ide.lrp? > Did you load any modules for IDE disk? > > > Bodo > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iD8DBQFGfDXgnMz9fgzDSqcRAvUhAJ9/PafIu0lfrGsW+S5qP3Qkr4b3MQCgiY6p > c1wLWGcsj78eHRbfjp4+GMg= > =Im78 > -----END PGP SIGNATURE----- > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > ------------------------------------------------------------------------ > leaf-user mailing list: lea...@li... > https://lists.sourceforge.net/lists/listinfo/leaf-user > Support Request -- http://leaf-project.org/ > > |
From: Bodo M. <bo...@bo...> - 2007-06-24 11:13:59
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 C.Dummy schrieb: > I'm not sure what line I should put in rules. I tried: > FTP/ACCEPT net fw Hello Andrey, this should be the right line if the FTP server is running on the same system as shorewall and if this system is directly connected to your external IP address. If you have a NAT router beween the external address and your Bering system you need some configuration on the router. > than > FTP/DNAT net loc:192.168.1.254 This would redirect all incoming FTP connections to a different system at the specified address. > None of them work when I try to ftp from outside. I'm getting message > socket connected waiting for welcome message.. If the socket is really connected then it must have completed the initial handshake. So it seems unlikely that your firewall blocks traffic from the FTP server to the client. Try to find out if your FTP server sends the welcome message. Packages libpcap and tcpdump might help. > When I added > FTP/ACCEPT loc fw > I can ftp to BeringU box from my local LAN but I can't upload.. FTP needs a second connection to a non-static port for data transfer. You probably have load the ip_conntrack and ip_conntrack_ftp modules. > As for mounting. I Google on the Internet that I'm missing ext3 module. > So I added ext3.o but I'm getting so many unresolved symbols If the names of the missing symbols start with journal_ you have to insert module jbd before ext3. > that I > tried vfat (comes with distro) and here I've got error Attempting to > create a too large file system. With help of Google again I found command > mkfs.vfat -F 32 /dev/hda1 and this worked. After formating the drive I > was able to mount. I would not use vfat except for filesystems that must be accessible from DOS/Windows. I suggest to use ext2 if you can't get ext3 to work. Bodo -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGflHrnMz9fgzDSqcRApfXAJ9p1j0gFNY+CQrJpCVvyTwQVrg/dQCffhig 4XpnszP7Fzpknk0UpZ33DzY= =zgv4 -----END PGP SIGNATURE----- |
From: C.Dummy <cd...@b2...> - 2007-06-25 20:32:40
|
Problems with uploading from local IP to fw ftp server: FTP/ACCEPT loc fw Were resolved when I did chown 777 /home/ftp. Even though I have rule: FTP/ACCEPT net fw I can still only get to handshake (socket connected, waiting for welcome message) ftp modules are loaded by default in BeringU. After adding jbd.o no more problems with mounting hdd formated as ext3. I'm getting there. I'm not sure how to use packages libpcap and tcpdump on BeringU box. I checked shorewall logs it doesn't block connection from my outside ip. Thanks for all the help. Andrey Bodo Meissner wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > C.Dummy schrieb: > > >> I'm not sure what line I should put in rules. I tried: >> FTP/ACCEPT net fw >> > > Hello Andrey, > > this should be the right line if the FTP server is running on the same system as shorewall and if this system is directly connected to your external IP address. > If you have a NAT router beween the external address and your Bering system you need some configuration on the router. > > >> than >> FTP/DNAT net loc:192.168.1.254 >> > > This would redirect all incoming FTP connections to a different system at the specified address. > > >> None of them work when I try to ftp from outside. I'm getting message >> socket connected waiting for welcome message.. >> > > If the socket is really connected then it must have completed the initial handshake. So it seems unlikely that your firewall blocks traffic from the FTP server to the client. > Try to find out if your FTP server sends the welcome message. Packages libpcap and tcpdump might help. > > >> When I added >> FTP/ACCEPT loc fw >> I can ftp to BeringU box from my local LAN but I can't upload.. >> > > FTP needs a second connection to a non-static port for data transfer. You probably have load the ip_conntrack and ip_conntrack_ftp modules. > > >> As for mounting. I Google on the Internet that I'm missing ext3 module. >> So I added ext3.o but I'm getting so many unresolved symbols >> > > If the names of the missing symbols start with journal_ you have to insert module jbd before ext3. > > >> that I >> tried vfat (comes with distro) and here I've got error Attempting to >> create a too large file system. With help of Google again I found command >> mkfs.vfat -F 32 /dev/hda1 and this worked. After formating the drive I >> was able to mount. >> > > I would not use vfat except for filesystems that must be accessible from DOS/Windows. > I suggest to use ext2 if you can't get ext3 to work. > > Bodo > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > > iD8DBQFGflHrnMz9fgzDSqcRApfXAJ9p1j0gFNY+CQrJpCVvyTwQVrg/dQCffhig > 4XpnszP7Fzpknk0UpZ33DzY= > =zgv4 > -----END PGP SIGNATURE----- > > ------------------------------------------------------------------------- > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > ------------------------------------------------------------------------ > leaf-user mailing list: lea...@li... > https://lists.sourceforge.net/lists/listinfo/leaf-user > Support Request -- http://leaf-project.org/ > > |
From: Bodo M. <bo...@bo...> - 2007-06-26 13:53:53
|
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 C.Dummy schrieb: > I'm not sure how to use packages libpcap and tcpdump on BeringU box. I checked shorewall logs it doesn't block connection from my outside ip. tcpdump depends on libpcap. Install both packages apkg -i libpcap apkg -i tcpdump Read the documentation of tcpdump on a different system or from WWW Start tcpdump with appropriate options and filter expression, e.g. tcpdump -X -i ppp0 port ftp try to connect from external address to your FTP server I just found out that the OS does the initial connection handshake when you connect to a port where the server has called listen() even if the server has not (yet) called accept(). In this case the client will wait for the welcome message until the server accepts the connection and writes this message. Bodo P.S. Please do not send me a copy of a message you send to the mailing list. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGgRpZnMz9fgzDSqcRAh2wAJ9C5MnXwxFhStSCtDaHJJEJAXbgBACfeFd9 Q3+RlAurVnFCw2OnHQasQ8U= =ioyH -----END PGP SIGNATURE----- |
From: C.Dummy <cd...@b2...> - 2007-06-21 16:06:13
|
Did anybody ran vsftpd succesfully on BeringU box? Andrey Hello. Thanks for advice. I installed vsftpd and server is running. I edited vsftpd.conf so local_enable=YES I even changed (not sure what it is) local_unmask=022 Than I created user adduser cdummy -g ftp with password. When I try to ftp to server I'm not getting any respond from server. Just "can't connect, can't login still trying". My idea was: 1. Ssh to BeringU box.(no problem) 2. Adduser cdummy with group ftp (no problem) 3. Mount -t ext3 /dev/hda1 /home/ftp (problems) 4. ftp to vsftpd server as local user cdummy (problems) So after I restart BeringU box all above is gone. When I boot from floppy/cd kernel finds hda: Fujitsu etc..). But when I do mount -t ext2 /dev/hda1 /home/ftp I'm getting: mount: Mounting /dev/hda1 on /home/ftp failed: No such device Any idea why there is no response from the server and why Ican't mount my hda1? I tried to edit fstab same effect. Thanks for help Andrey Eric Spakman wrote: > Hello Andrey, > > That shouldn't be any problem. You can use the vsftpd.lrp package, which > is a small, secure and fast ftp daemon (tftpd.lrp contains a Tftp daemon, > which is something different). Configuration details can be found at the > follwoing link: http://vsftpd.beasts.org/ > > You can start and stop the daemon via ssh by doing /etc/init.d/vsftpd stop > / start > > Eric > > >> Hello . I'm running single floppy Bering-u 3.0 distro. I'm thinking >> about adding small HDD and setting up ftp server on Bering box. I'd like to >> have this server on demand so I can start or stop server any time I want. >> Can this be done? Are there any docs or guide about that? What >> server would be the best to do that? Tftpd, vsftpd? Thanks for great distro >> and help. Andrey >> >> >> ------------------------------------------------------------------------- >> This SF.net email is sponsored by DB2 Express >> Download DB2 Express C - the FREE version of DB2 express and take >> control of your XML. No limits. Just data. Click to get it now. >> http://sourceforge.net/powerbar/db2/ >> ------------------------------------------------------------------------ >> leaf-user mailing list: leaf-user@li... >> https://lists.sourceforge.net/lists/listinfo/leaf-user >> Support Request -- http://leaf-project.org/ |
From: Bob G. <ban...@ms...> - 2007-06-13 13:54:55
|
> -----Original Message----- > From: lea...@li... [mailto:leaf-user- > bo...@li...] On Behalf Of C.Dummy > Sent: Wednesday, June 13, 2007 9:22 AM > To: lea...@li... > Subject: [leaf-user] ftp server > > Hello . I'm running single floppy Bering-u 3.0 distro. I'm thinking > about adding small HDD and setting up ftp server on Bering box. I'd like > to have this server on demand so I can start or stop server any time I > want. Can this be done? Are there any docs or guide about that? What > server would be the best to do that? Tftpd, vsftpd? Thanks for great > distro and help. > Andrey >[.snip.] If the BUC is the fw/router I wouldn't run an FTP server or other services unrelated to that function. I would run an FTP server on some system inside the firewall (local or dmz network) and control it at the BUC. If you want to turn it off & on it would be simple to block/allow that FTP traffic at the firewall. Likewise to allow/deny FTP from/to specific hosts or networks. Cheers, -Bob |
From: C.Dummy <cd...@b2...> - 2007-06-13 13:58:26
|
I understand this. This causes other problems like nobody from behind other firewall can use ftp server behind my firewall. This server on Bering box would run only on demand if I need it in very rare occasions. Andrey Bob Gregory wrote: >> -----Original Message----- >> From: lea...@li... [mailto:leaf-user- >> bo...@li...] On Behalf Of C.Dummy >> Sent: Wednesday, June 13, 2007 9:22 AM >> To: lea...@li... >> Subject: [leaf-user] ftp server >> >> Hello . I'm running single floppy Bering-u 3.0 distro. I'm thinking >> about adding small HDD and setting up ftp server on Bering box. I'd like >> to have this server on demand so I can start or stop server any time I >> want. Can this be done? Are there any docs or guide about that? What >> server would be the best to do that? Tftpd, vsftpd? Thanks for great >> distro and help. >> Andrey >> [.snip.] >> > > If the BUC is the fw/router I wouldn't run an FTP server or other services > unrelated to that function. I would run an FTP server on some system inside > the firewall (local or dmz network) and control it at the BUC. If you want > to turn it off & on it would be simple to block/allow that FTP traffic at > the firewall. Likewise to allow/deny FTP from/to specific hosts or networks. > > Cheers, > -Bob > > > |
From: C.Dummy <cd...@b2...> - 2007-06-13 14:06:11
|
The other thing I wouldn't like to build separate box with ftp server if I would use this maybe 2-3 times a month. Thanks for fast response and help Andrey Bob Gregory wrote: >> -----Original Message----- >> From: lea...@li... [mailto:leaf-user- >> bo...@li...] On Behalf Of C.Dummy >> Sent: Wednesday, June 13, 2007 9:22 AM >> To: lea...@li... >> Subject: [leaf-user] ftp server >> >> Hello . I'm running single floppy Bering-u 3.0 distro. I'm thinking >> about adding small HDD and setting up ftp server on Bering box. I'd like >> to have this server on demand so I can start or stop server any time I >> want. Can this be done? Are there any docs or guide about that? What >> server would be the best to do that? Tftpd, vsftpd? Thanks for great >> distro and help. >> Andrey >> [.snip.] >> > > If the BUC is the fw/router I wouldn't run an FTP server or other services > unrelated to that function. I would run an FTP server on some system inside > the firewall (local or dmz network) and control it at the BUC. If you want > to turn it off & on it would be simple to block/allow that FTP traffic at > the firewall. Likewise to allow/deny FTP from/to specific hosts or networks. > > Cheers, > -Bob > > > |
From: C.Dummy <cd...@b2...> - 2007-06-14 17:15:26
|
Hello. Why new floppy image doesn't have default values in Leaf.cfg? Everything is commented out. #LRP= #syst_size etc. Andrey |
From: Charles S. <ch...@st...> - 2002-05-10 15:56:42
|
> ipchains input -p tcp -d 64.113.72.222 ftp -j ACCEPT needed to be higher in > the chain, so it works now. the thing that now baffles me is that i thought > network.conf was supposed to take care of adding the ipchains rule when you > added it to network.conf. it added it automatically when i port-forwarded > http and ssh. anyone know why i had to manually add it this time? tia. > > <network.conf> > INTERN_SERVERS=" > tcp_${EXTERN_IP}_www_192.168.1.11_www > tcp_${EXTERN_IP}_ssh_192.168.1.12_ssh > tcp_${EXTERN_IP}_ftp_192.168.1.12_ftp > tcp_${EXTERN_IP}_20_192.168.1.12_20 > " > </network.conf> INTERN_SERVERS only sets up port-forwarding. You are responsible for using one of the available mechanisms to allow inbound packets to the particular service, typically with EXTERN_TCP_PORTS or the EXTERN_TCP_PORTn indexed list. Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) |