Opened 16 years ago

Closed 16 years ago

Last modified 10 years ago

#4184 closed Bug report (rejected)

425 Can't open data connection.

Reported by: Silent Owned by:
Priority: normal Component: FileZilla Server
Keywords: failed to retrieve directory listing Cc:
Component version: Operating system type: Windows
Operating system version: XP-Pro SP3

Description

I have set the server to explicit TLS and encrypted data connection. I have opened port TCP 21 and TCP data port 990 to the server machine. The client connects just fine but I get the above error and the client cannot retrieve the file list. I copy below the log from the client:
"Quote"
Status: Resolving address of ???.dyndns.org
Status: Connecting to ???.???.?54.?91:21...
Status: Connection established, waiting for welcome message...
Response: 220-FileZilla Server version 0.9.29 beta
Response: 220 get out of here
Command: AUTH TLS
Response: 234 Using authentication type TLS
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER ???
Status: TLS/SSL connection established.
Response: 331 Password required for ???
Command: PASS *
Response: 230 Logged on
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 200 Protection level set to P
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (???,???,???,???,6,229)
Status: Server sent passive reply with unroutable address. Using server address instead.
Command: LIST
Response: 425 Can't open data connection.
Error: Failed to retrieve directory listing
"Unquote"

I have added the "?" marks for privacy.

Change History (6)

comment:1 by Silent, 16 years ago

Keywords: failed to retrieve directory listing added

comment:2 by Tim Kosse, 16 years ago

Resolution: invalid
Status: newclosed

Log became useless due to the obfuscation.

comment:3 by Silent, 16 years ago

Resolution: invalid
Status: closedreopened

Here is a log showing direct connection with the same results. If the server is set to ftp without SSL, the connection is established and the directory listing is shown. I have not tried it myself, but a friend connected to my server using cuteftp and a regular non SSL connection. I will try it myself this pm, but I would like to connect using SSL both for autentication and data transfer. What would you suggest the settings to be? I am using a DSL modem/router.

"Quote"
Status: Resolving address of silentnite.dyndns.org
Status: Connecting to 86.97.86.197:21...
Status: Connection established, waiting for welcome message...
Response: 220-FileZilla Server version 0.9.29 beta
Response: 220 get out of here
Command: AUTH TLS
Response: 234 Using authentication type TLS
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER silentnite
Status: TLS/SSL connection established.
Response: 331 Password required for silentnite
Command: PASS
Response: 230 Logged on
Command: SYST
Response: 215 UNIX emulated by FileZilla
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: REST STREAM
Response: SIZE
Response: MLST type*;size*;modify*;
Response: MLSD
Response: AUTH SSL
Response: AUTH TLS
Response: UTF8
Response: CLNT
Response: MFMT
Response: 211 End
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 200 Protection level set to P
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (172,16,1,11,8,32)
Status: Server sent passive reply with unroutable address. Using server address instead.
Command: LIST
Response: 425 Can't open data connection.
Error: Failed to retrieve directory listing
Status: Disconnected from server
Status: Connecting to 86.97.86.197:21...
Status: Connection established, waiting for welcome message...
Response: 220-FileZilla Server version 0.9.29 beta
Response: 220 get out of here
Command: AUTH TLS
Response: 234 Using authentication type TLS
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER silentnite
Status: TLS/SSL connection established.
Response: 331 Password required for silentnite
Command: PASS
Response: 230 Logged on
Command: SYST
Response: 215 UNIX emulated by FileZilla
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: REST STREAM
Response: SIZE
Response: MLST type*;size*;modify*;
Response: MLSD
Response: AUTH SSL
Response: AUTH TLS
Response: UTF8
Response: CLNT
Response: MFMT
Response: 211 End
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 200 Protection level set to P
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (172,16,1,11,8,33)
Status: Server sent passive reply with unroutable address. Using server address instead.
Command: LIST
Response: 425 Can't open data connection.
Error: Failed to retrieve directory listing
Status: Disconnected from server
Status: Connecting to 86.97.86.197:21...
Status: Connection established, waiting for welcome message...
Response: 220-FileZilla Server version 0.9.29 beta
Response: 220 get out of here
Command: AUTH TLS
Response: 234 Using authentication type TLS
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER silentnite
Status: TLS/SSL connection established.
Response: 331 Password required for silentnite
Command: PASS
Response: 230 Logged on
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 200 Protection level set to P
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (172,16,1,11,8,34)
Status: Server sent passive reply with unroutable address. Using server address instead.
Command: LIST
Response: 425 Can't open data connection.
Error: Failed to retrieve directory listing
"Unquote"

comment:4 by Silent, 16 years ago

Status: Server sent passive reply with unroutable address. Using server address instead. Does that mean the external IP address or the 172.16.1.11 internal address?

What exactly does this mean?

comment:5 by Tim Kosse, 16 years ago

Resolution: rejected
Status: reopenedclosed

Incorrect server configuration. Read http://wiki.filezilla-project.org/Network_Configuration

Note: See TracTickets for help on using tickets.