Não consigo acessar o servidor ftp a patir da outra maquina.

[gfav]

opa.. blz?

seguinte
eu tenho o fedora core 2 instalado em uma maquina aki de ksa... eu configurei o vsftpd.conf dessa maneira:

Código:

# Example config file /etc/vsftpd.conf
#
# The default compiled in settings are very paranoid. This sample file
# loosens things up a bit, to make the ftp daemon more usable.
#
# Allow anonymous FTP?
anonymous_enable=no
#
# Uncomment this to allow local users to log in.


local_enable=YES
#
# Uncomment this to enable any form of FTP write command.
write_enable=YES
#
# Default umask for local users is 077. You may wish to change this to 022,
# if your users expect that (022 is used by most other ftpd's)
local_umask=022
#
# Uncomment this to allow the anonymous FTP user to upload files. This only
# has an effect if the above global write enable is activated. Also, you will
# obviously need to create a directory writable by the FTP user.
anon_upload_enable=YES
#
# Uncomment this if you want the anonymous FTP user to be able to create
# new directories.
anon_mkdir_write_enable=NO
#
# Activate directory messages - messages given to remote users when they
# go into a certain directory.
dirmessage_enable=YES
#
# Activate logging of uploads/downloads.
xferlog_enable=YES
#
# Make sure PORT transfer connections originate from port 20 (ftp-data).
connect_from_port_20=YES
#
# If you want, you can arrange for uploaded anonymous files to be owned by
# a different user. Note! Using "root" for uploaded files is not
# recommended!
#chown_uploads=YES
#chown_username=whoever
# These ASCII options are split into upload and download because you may wish
# to enable ASCII uploads (to prevent uploaded scripts etc. from breaking),
# without the DoS risk of SIZE and ASCII downloads. ASCII mangling should be
# on the client anyway..
#ascii_upload_enable=YES
#ascii_download_enable=YES
#
# You may fully customise the login banner string:
ftpd_banner=Bem Vindo ao Nandoserver FTP.
#
# You may specify a file of disallowed anonymous e-mail addresses. Apparently
# useful for combatting certain DoS attacks.
#deny_email_enable=YES
# (default follows)
#banned_email_file=/etc/vsftpd.banned_emails
#
# You may specify an explicit list of local users to chroot() to their home
# directory. If chroot_local_user is YES, then this list becomes a list of
# users to NOT chroot().
#chroot_list_enable=YES
# (default follows)
#chroot_list_file=/etc/vsftpd.chroot_list

chroot_local_user=YES
secure_chroot_dir=/home
#
# You may activate the "-R" option to the builtin ls. This is disabled by
# default to avoid remote users being able to cause excessive I/O on large
# sites. However, some broken FTP clients such as "ncftp" and "mirror" assume
# the presence of the "-R" option, so there is a strong case for enabling it.

#
# You may override where the log file goes if you like. The default is shown
# below.
xferlog_file=/var/log/vsftpd.log
#
# If you want, you can have your log file in standard ftpd xferlog format
xferlog_std_format=YES
#
# You may change the default value for timing out an idle session.
idle_session_timeout=600
#
# You may change the default value for timing out a data connection.
data_connection_timeout=120
#
# It is recommended that you define on your system a unique user which the
# ftp server can use as a totally isolated and unprivileged user.
nopriv_user=ftp
#
# Enable this and the server will recognise asynchronous ABOR requests. Not
# recommended for security (the code is non-trivial). Not enabling it,
# however, may confuse older FTP clients.
#async_abor_enable=YES
#
# By default the server will pretend to allow ASCII mode but in fact ignore
# the request. Turn on the below options to have the server actually do ASCII
# mangling on files when in ASCII mode.
# Beware that turning on ascii_download_enable enables malicious remote parties
# to consume your I/O resources, by issuing the command "SIZE /big/file" in
# ASCII mode.
# These ASCII options are split into upload and download because you may wish
# to enable ASCII uploads (to prevent uploaded scripts etc. from breaking),
# without the DoS risk of SIZE and ASCII downloads. ASCII mangling should be
# on the client anyway..
#ascii_upload_enable=YES
#ascii_download_enable=YES
#
# You may fully customise the login banner string:
ftpd_banner=Bem Vindo ao Nandoserver FTP.
#
# You may specify a file of disallowed anonymous e-mail addresses. Apparently
# useful for combatting certain DoS attacks.
#deny_email_enable=YES
# (default follows)
#banned_email_file=/etc/vsftpd.banned_emails
#
# You may specify an explicit list of local users to chroot() to their home
# directory. If chroot_local_user is YES, then this list becomes a list of
# users to NOT chroot().
#chroot_list_enable=YES
# (default follows)
#chroot_list_file=/etc/vsftpd.chroot_list

chroot_local_user=YES
secure_chroot_dir=/home
#
# You may activate the "-R" option to the builtin ls. This is disabled by
# default to avoid remote users being able to cause excessive I/O on large
# sites. However, some broken FTP clients such as "ncftp" and "mirror" assume
# the presence of the "-R" option, so there is a strong case for enabling it.
#ls_recurse_enable=YES

pam_service_name=vsftpd
userlist_enable=YES
#enable for standalone mode
listen=YES
tcp_wrappers=YES

dai tudo bem.. coloquei pra rodar de dentro do terminal eu consigo acessar o ftp normalmente....

Código:

[fernando@nandoserver fernando]$ ftp 192.168.254.2
Connected to 192.168.254.2 (192.168.254.2).
220 Bem Vindo ao Nandoserver FTP.
Name (192.168.254.2:fernando): fernando
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp>

soh q eu naum consigo acessar pelo outro pc q tem o win xp...

Código:

ftp 192.168.254.2
> ftp: connect:Numero de erro desconhecido

sera q tem alguma configuração q eu tenha q fazer pra acessar desse outro pc com o xp?

Sou meiu iniciante em linux ainda! hehehe!

Abraçoss!

[mtec]

Vc consegue ao menos pingar o server FTP a partir da maquina cliente?

mtec :good:

[gfav]

Citação:

Postado Originalmente por mtec

Vc consegue ao menos pingar o server FTP a partir da maquina cliente?

mtec :good:

consigo sim... eu tbm to rodando nesse server um servidor http... ai eu consigo acessar normalmente!


abraços

[mtec]

dah um nmap e verifica se existe listada a porta 21.

Verifica se os arquivos de log, apontam erros em conexões o ftp!!

Dah tmb um netstat -atu | grep ftp e posta o resultado !!

mtec :good:

[gfav]

Citação:

Postado Originalmente por mtec

dah um nmap e verifica se existe listada a porta 21.

Verifica se os arquivos de log, apontam erros em conexões o ftp!!

Dah tmb um netstat -atu | grep ftp e posta o resultado !!

mtec :good:

olha ai o resultado da nmap

Código:

[fernando@nandoserver fernando]$ nmap 192.168.254.2

Starting Nmap 3.95 ( http://www.insecure.org/nmap/ ) at 2006-01-24 20:47 BRT
Interesting ports on 192.168.254.2:
(The 1665 ports scanned but not shown below are in state: closed)
PORT    STATE SERVICE
21/tcp  open  ftp
22/tcp  open  ssh
80/tcp  open  http
111/tcp open  rpcbind
443/tcp open  https

Nmap finished: 1 IP address (1 host up) scanned in 1.135 seconds

Nos arquivos logs naum ha nenhuma erro!

agora o resultado do netstat

Código:

[root@nandoserver fernando]# netstat -atu | grep ftp
tcp        0      0 *:ftp                   *:*                     OUÃA
[root@nandoserver fernando]#

iai tem algo de errado? ...

falows

[mtec]

É realmente tah certinho...

Este server é público?? Tem IP válido?

Tem alguma máquina linux (estação), que vc possa fazer teste sem ser o proprio servidor??

Poderia fazer um teste externo??

mtec

[gfav]

Citação:

Postado Originalmente por mtec

É realmente tah certinho...

Este server é público?? Tem IP válido?

Tem alguma máquina linux (estação), que vc possa fazer teste sem ser o proprio servidor??

Poderia fazer um teste externo??

mtec

Esse maquina q eu to rodando o servidor ftp ela esta atras de um router.... mais eu to tentando acessar essa maquina a partir da outra maquina q esta atras desse router.... uma maquina com o win xp... quer dizer.. nem pela rede interna eu to conseguindo acessar! no modem mesmo naum tem nada q bloqueia por rede interna! soh se for pela externa ai eu teria q liberar portas no modem...!

eu tenho um server http rodando nessa mesma maquna q ta o ftp... ai eu consigo acessar normalmente digitanto o ip no ie... mas o ftp naum consigo...!

O q poder ser?

abraços!
vlw!