Re: FTP via LVS: can log in but not 'ls'

To:	"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>
Subject:	Re: FTP via LVS: can log in but not 'ls'
From:	Graeme Fowler <graeme@xxxxxxxxxxx>
Date:	Wed, 23 Aug 2006 15:40:20 +0100

To:

"LinuxVirtualServer.org users mailing list." <lvs-users@xxxxxxxxxxxxxxxxxxxxxx>

Subject:

From:

Date:

Wed, 23 Aug 2006 15:40:20 +0100

On 23/08/2006 15:22, Keith Edmunds wrote:
<snip>

A pointer to where to look to resolve this would be appreciated, thanks.


1. Ensure the LVS FTP helper is loaded (you have).

2. Make sure that you define (or make a note of) the range of portsyour FTP server uses for data connections (this varies from server toserver).

3. Ensure that you will accept traffic to those ports on your director.

I learned this the hard way :-/

If the packets are rejected by netfilter/iptables on the director, theFTP helper never sees them so the connections will almost never work.

In your example, the director has dropped the inbound SYN to port 13330,thus the data connection will never start.


Graeme

<Prev in Thread]	Current Thread	[Next in Thread>
FTP via LVS: can log in but not 'ls', Keith Edmunds Re: FTP via LVS: can log in but not 'ls', Graeme Fowler <= Re: FTP via LVS: can log in but not 'ls', Joseph Mack NA3T

Current Thread

[Next in Thread>

Previous by Date:	Re: Keepalived/Vrrp with Shorewall, Noc Phibee
Next by Date:	Re: Keepalived/Vrrp with Shorewall, Dominik Klein
Previous by Thread:	FTP via LVS: can log in but not 'ls', Keith Edmunds
Next by Thread:	Re: FTP via LVS: can log in but not 'ls', Joseph Mack NA3T
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

Re: Keepalived/Vrrp with Shorewall, Noc Phibee

Next by Date:

Re: Keepalived/Vrrp with Shorewall, Dominik Klein

Previous by Thread:

FTP via LVS: can log in but not 'ls', Keith Edmunds

Next by Thread:

Re: FTP via LVS: can log in but not 'ls', Joseph Mack NA3T

Indexes:

[Date] [Thread] [Top] [All Lists]