I've been editing the iptables by hand. The version of GUI configuration tool that I was using didn't handle the firewall rules that I wanted. I went in to the iptables file and wrote the following rule:
-A INPUT -p tcp -m state --state NEW -i eth0 --dport 21 -j LOG --log-prefix "NetF FTP Failure: "
I then did an iptables service restart, tested, and had no luck. I then rebooted the machine.
I replaced the rpm using the rpm from the Red Hat site, but did not put in any previous errata patches.
I edited vsftpd.conf to listen to my IP address, not the localhost address, and enabled log_ftp_protocol. I also set the pasv_min_port above 1024.
There are no entries in /etc/hosts.deny, and I have added vsftpd: ALL to /etc/hosts.allow.
The /etc/init.d/vsftpd looks plausible. I didn't see any explicit prohibitions or exclusions, and it seems to be pointed to the vsftpd.conf file.
I've restarted the vsftpd service after adding in the changes to vsftpd.conf. Then retested. Still no luck. And to make it even more interesting, I have not been able to locate any mention of "NetF" in any of the log files in /var/log.
I'm at a loss. It almost seems like FTP is not making it to the machine. I've tested FTP from this machine to a .gov server that I sometimes use, and have gotten access. I'm not sure what I should be looking at next.
Thanks,
-Bob
On December 18, 2003 08:45 pm, Pete Nesbitt wrote:
...
chain and the internet is accessed via eth0, then the log line would look like:
$IPTABLES -A INPUT -p tcp -m state --state NEW -i $EXT_IF \
--dport 21 -j LOG --log-prefix "NetF FTP Failure: "
-- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
