Paul:
I just had the vendor check their Gene6 server config.
They have the public IP in the Redirect PASV IP
box but the server is still handing out the private
it.
Any ideas?
Thanks,
Neil
--
Neil Aggarwal, (214)986-3533, www.JAMMConsulting.com
FREE! Eliminate junk email and reclaim your inbox.
Visit http://www.spammilter.com for details.
-----Original Message-----
From: Paul Fremantle [mailto:[EMAIL PROTECTED]
Sent: Thursday, February 08, 2007 12:19 PM
To: Jakarta Commons Users List
Subject: Re: [net-ftp] FTPS timeout when trying to upload a file
Neil
The Gene6 Secure FTP server that your customer is using has a place to
set up the real IP address of the NAT connection. In the IP Binding
section of the admin console under the passive mode setup there is a
box labelled Redirect PASV IP. This is the "IP or hostname for Passive
mode when the FTP server is behind a firewall".
The server isn't broken, it just hasn't been configured properly. If
they add the address 66.161.40.76 into that box everything will work.
Paul
On 2/8/07, Neil Aggarwal <[EMAIL PROTECTED]> wrote:
> Steffen:
>
> If the server is running on a private IP, how can you
> expect it to know anything except the private IP?
> A NAT route is upstream of the server.
>
> As I said, I do not control the server. The company
> that hired me will not accept me telling them the
> server from their vendor is broken and
> that my code will not work.
>
> Given the discussion below, we need a solution that allows
> the user to force an override for the IP address used for
> passive connections.
>
> Thanks,
> Neil
>
>
> --
> Neil Aggarwal, (214)986-3533, www.JAMMConsulting.com
> FREE! Eliminate junk email and reclaim your inbox.
> Visit http://www.spammilter.com for details.
>
> -----Original Message-----
> From: Steffen Heil [mailto:[EMAIL PROTECTED]
> Sent: Thursday, February 08, 2007 11:16 AM
> To: 'Jakarta Commons Users List'
> Subject: RE: [net-ftp] FTPS timeout when trying to upload a file
>
> Hi
>
> > I could be on a private subnet which is the same private
> > subnet as the server. But, we could be in different locations.
> >
> > In that case, the solution below won't work.
> >
> > How about we do this:
> >
> > If (The IP given by the server is a private address)
> > Always use the IP given by the call to
> > the connect command.
> > else
> > Use the IP given by the server.
> >
> > That should fix this problem.
>
> I wouldn't do so.
>
> That SERVER is broken and needs to be fixed.
> There is nothing a client can do.
>
> Please DO NOT try to handle that on the client. You cannot.
>
> First, there are cases where servers actually USE different IPs for
control
> and data connections, which is absolutely legal. (It is even essential if
> you use FXP capabilities, which is basically pure FTP with 2 servers
> involved.)
>
> Second, there ARE cases where servers with public OR private ips are NATed
> to private IPs. [And maybe even from one private ip to another private
ip.]
> If you even happen to be on the same subnet as such a server, you still
want
> to be able to connect.
>
> Again, the server is broken. Get it fixed. Or reject to use it.
> DON'T CHANGE THE CLIENT. Especially don't give it any strange semantic
> rules, that make understanding problems impossible, if there is ever a
> situation that you didn't expect. If at all, give the use a change to
> optionally overwrite used IPs.
>
> Regards,
> Steffen
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
--
Paul Fremantle
VP/Technology, WSO2 and OASIS WS-RX TC Co-chair
http://bloglines.com/blog/paulfremantle
[EMAIL PROTECTED]
"Oxygenating the Web Service Platform", www.wso2.com
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
