Hey everyone, I've started to notice FTP problems with an Oxygen firewall I have running. The problem occurs on both unix and NT systems located behind the firewall. I have found that all ftp transfers be they incoming or outgoing eventually freeze. Although it appears that NT -> NT transfers are more stable, they too freeze after about 800-1500 files have been transferred.
The firewall configuration is pretty simple. It has two 2 ethernet interfaces, and proxyarp is being used. I've included the seawall.conf file below. One thing about my config is that I do not have any masq timeouts specified. I was wondering if perhaps I should? One thing I've noticed that I think is interesting to note is that this problem does not occur when using LeechFTP. I believe this because LeechFTP tends to keep sending commands to keep the connection active. That's why I was wondering if it could have something to do with the masq timeouts. My seawall.conf: (with comments stripped out) --- internet="eth0" myip="x.y.z.51" local="eth1" strong="" noforward="eth1" noforwardnets="" dialinppp="" localports="" log="Yes" lockfile="/var/state/firewall" ntpservers="" ntpnonpriv="No" dnsservers="" dnslocalports="" icqports="" pptpservers="" pptpserver="" ipsecservers="" poptop="" pptpclients="" pptpclient="No" dmz="" localnets="" nonmasq="" nonmasqnets="" popservers="" smtpservers="" modules="" masq_timeouts="" --- Should I be setting anything for the masq_timeouts if I am using ProxyARP? I guess my real question is that if I am using ProxyArp am I still masq'ing? Here is a log from some testing I was doing: --- sending Body_RJ_B4_FMA_012802_R0017GR01.txt as Body_RJ_B4_FMA_012802_R0017GR01.txt (1 of 285) PASV 227 Entering Passive Mode (205,150,101,55,247,15) connecting to x.y.z.55:63247 - - connecting to x.y.z.55:63247 ! Connection failed x.y.z.55 - connection timed out ! connect: error 0 PORT 192,168,0,124,7,124 200 PORT command successful. STOR Body_RJ_B4_FMA_012802_R0017GR01.txt 150 Opening ASCII mode data connection for Body_RJ_B4_FMA_012802_R0017GR01.txt. Transmitted 3008 bytes in 0.1 secs, (290.00 Kbps), transfer succeeded 226 Transfer complete. MDTM 20020129035134 Body_RJ_B4_FMA_012802_R0017GR01.txt 550 20020129035134 Body_RJ_B4_FMA_012802_R0017GR01.txt: No such file or directory. sending Body_RJ_ES_ESN_012802_R0205I00D.txt as Body_RJ_ES_ESN_012802_R0205I00D.txt (2 of 285) PASV 227 Entering Passive Mode (x,y,z,55,181,6) connecting to x.y.z.55:46342 - - connecting to x.y.z.55:46342 ! Connection failed x.y.z.55 - connection timed out ! connect: error 0 PORT 192,168,0,124,7,131 200 PORT command successful. STOR Body_RJ_ES_ESN_012802_R0205I00D.txt 150 Opening ASCII mode data connection for Body_RJ_ES_ESN_012802_R0205I00D.txt. Transmitted 1039 bytes in 0.1 secs, (100.00 Kbps), transfer succeeded 226 Transfer complete. sending Body_RJ_ES_ESN_012802_R0205J00D.txt as Body_RJ_ES_ESN_012802_R0205J00D.txt (3 of 285) PASV 227 Entering Passive Mode (x,y,z,55,243,37) connecting to x.y.z.55:62245 - - connecting to x.y.z.55:62245 ! Connection failed x.y.z.55 - connection timed out ! connect: error 0 PORT 192,168,0,124,7,135 200 PORT command successful. STOR Body_RJ_ES_ESN_012802_R0205J00D.txt 150 Opening ASCII mode data connection for Body_RJ_ES_ESN_012802_R0205J00D.txt. Transmitted 1039 bytes in 0.1 secs, (100.00 Kbps), transfer succeeded 226 Transfer complete. PWD 257 "/home/campload" is current directory. PASV 227 Entering Passive Mode (x,y,z,55,178,19) connecting to x.y.z.55:45587 - - connecting to x.y.z.55:45587 ! Connection failed x.y.z.55 - connection timed out ! connect: error 0 PORT 192,168,0,124,7,138 200 PORT command successful. LIST 150 Opening ASCII mode data connection for directory listing. Received 501 bytes in 0.1 secs, (40.00 Kbps), transfer succeeded 226 Transfer complete. --- Thanks in advance. Ryan. _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
