Changes between Version 1 and Version 2 of Ticket #12991


Ignore:
Timestamp:
Oct 3, 2023, 4:57:19 PM (15 months ago)
Author:
John Hossbach
Comment:

Legend:

Unmodified
Added
Removed
Modified

  • Ticket #12991 – Description

    v1 v2  
    77
    88What's happening here is that the CGNAT address space is being treated as a non-local connection and is being sent the "public" IP (resolved from the hostname provided) in the 227 response.  Instead, CGNAT address space should be treated the same as private network address space and the 227 response should have the server's IP.
     9
     10Sample logs:
     11100.x.x.x - Client CGNAT IP (actual IP assigned to client)
     129.8.7.6 - Client Public Outbound NAT IP
     131.2.3.4 - Server
     14
     15{{{2023-10-02T16:00:23.572Z << [FTP Session 15 100.x.x.x] 220-FileZilla Server 1.7.3
     162023-10-02T16:00:23.572Z << [FTP Session 15 100.x.x.x] 220 Please visit https://filezilla-project.org/
     172023-10-02T16:00:23.650Z >> [FTP Session 15 100.x.x.x] USER myuser
     182023-10-02T16:00:23.650Z << [FTP Session 15 100.x.x.x] 331 Please, specify the password.
     192023-10-02T16:00:23.728Z >> [FTP Session 15 100.x.x.x] PASS ****
     202023-10-02T16:00:23.806Z << [FTP Session 15 100.x.x.x myuser] 230 Login successful.
     212023-10-02T16:00:23.900Z >> [FTP Session 15 100.x.x.x myuser] PWD
     222023-10-02T16:00:23.900Z << [FTP Session 15 100.x.x.x myuser] 257 "/" is current directory.
     232023-10-02T16:00:23.994Z >> [FTP Session 15 100.x.x.x myuser] CWD somedir
     242023-10-02T16:00:23.994Z << [FTP Session 15 100.x.x.x myuser] 250 CWD command successful
     252023-10-02T16:00:24.088Z >> [FTP Session 15 100.x.x.x myuser] PASV
     262023-10-02T16:00:24.088Z << [FTP Session 15 100.x.x.x myuser] 227 Entering Passive Mode (1,2,3,4,195,234)
     272023-10-02T16:00:24.228Z !! [FTP Session 15 100.x.x.x myuser] Data peer IP [9.8.7.6] differs from control peer IP [100.x.x.x]: this shouldn't happen, aborting the data connection.
     282023-10-02T16:00:24.244Z >> [FTP Session 15 100.x.x.x myuser] TYPE I
     292023-10-02T16:00:24.244Z << [FTP Session 15 100.x.x.x myuser] 200 Type set to I
     302023-10-02T16:00:24.322Z >> [FTP Session 15 100.x.x.x myuser] SIZE somefile.ext
     312023-10-02T16:00:24.322Z << [FTP Session 15 100.x.x.x myuser] 213 2015
     322023-10-02T16:00:24.385Z >> [FTP Session 15 100.x.x.x myuser] RETR somefile.ext
     332023-10-02T16:00:24.385Z << [FTP Session 15 100.x.x.x myuser] 425 Unable to build data connection: EINVAL - Invalid argument passed
     342023-10-02T16:00:24.463Z >> [FTP Session 15 100.x.x.x myuser] QUIT
     352023-10-02T16:00:24.463Z << [FTP Session 15 100.x.x.x myuser] 221 Goodbye.}}}