Just need to confirm is IP TABLES also causing such type of problem ? Sarfraz ----- Original Message ----- From: ***some text missing*** <shozii1@xxxxxxxxx> To: Amos Jeffries <squid3@xxxxxxxxxxxxx>; "squid-users@xxxxxxxxxxxxxxx" <squid-users@xxxxxxxxxxxxxxx> Cc: Sent: Tuesday, March 18, 2014 1:55 PM Subject: Re: FTP not connected through Squid After adding lines in squid.conf as suggested. still unable to retrieve directory listing. access.log 1395132611.648 22122 10.25.40.121 TCP_MISS/200 395 CONNECT 115.186.92.227:21 - DIRECT/115.186.92.227 - [Host: 115.186.92.227:21\r\nUser-Agent: FileZilla\r\n] [ ] 1395132611.648 20766 10.25.40.121 TCP_MISS/000 0 CONNECT 115.186.92.227:59953 - NONE/- - [Host: 115.186.92.227:59953\r\nUser-Agent: FileZilla\r\n] []Sarfraz ASlam ----- Original Message ----- From: Amos Jeffries <squid3@xxxxxxxxxxxxx> To: squid-users@xxxxxxxxxxxxxxx Cc: Sent: Tuesday, March 18, 2014 1:37 PM Subject: Re: FTP not connected through Squid On 18/03/2014 9:01 p.m., ***some text missing*** wrote: > We are using both kerberos and basic authentication mode. > > I am now able to connect to FTP site through filezilla by allowing FTP port with CONNECT method but unable to view directory listings. below are both errors. > > Filezilla Error; > 150. Opening binary mode data connection. > error. connection timed out > > access.log; > > 1395127370.117 20775 10.25.40.121 TCP_MISS/000 0 CONNECT 115.186.92.227:58682 - NONE/- - [Host: 115.186.92.227:58682\r\nProxy-Authorization: Basic c2FyZnJhei5hc2xhbUBtY2IuY29tLnBrOlJSb290QEREb21haW4=\r\nUser-Agent: FileZilla\r\n] [] > 1395127370.117 22121 10.25.40.121 TCP_MISS/200 395 CONNECT 115.186.92.227:21 - DIRECT/115.186.92.227 - [Host: 115.186.92.227:21\r\nProxy-Authorization: Basic c2FyZnJhei5hc2xhbUBtY2IuY29tLnBrOlJSb290QEREb21haW4=\r\nUser-Agent: FileZilla\r\n] [] > Looks like port 20 (ftp-data) was not enough for you. If you can't convince FileZilla to use port 20, you may have to add this to squid.conf: acl SSL_ports port 1024-65535 # FTP data Amos
