Re: Fwd: [squid-users] FTP issues

Hi Amos,

Thanks it did work since i only wanted a particular machine to access
the FTP site.

Regards

On Fri, Aug 21, 2009 at 1:01 PM, Amos Jeffries<squid3_at_treenet.co.nz> wrote:
> Kevin Kimani wrote:
>>
>> This is wat i get in Filezilla
>> "12:40:06       Status: Connecting to www.icuh2009.org through proxy
>> 12:40:06        Status: Connecting to 10.176.203.200:8080...
>> 12:40:06        Status: Connection with proxy established, performing
>> handshake...
>> 12:40:06        Response:       Proxy reply: HTTP/1.0 200 Connection
>> established
>> 12:40:06        Status: Connection established, waiting for welcome
>> message...
>> 12:40:06        Response:       220 Karibu! SawaSawa.com FTP Server -
>> Ready...
>> 12:40:06        Command:        USER xxxxxxx
>> 12:40:06        Response:       331 Password required for icuh2009.org.
>> 12:40:06        Command:        PASS ****************
>> 12:40:06        Response:       230-Disk Quota - Current : 178.827 MBytes
>> - Max :
>> 976.563 MBytes - Available : 797.736 MBytes
>> 12:40:06        Response:       230 User icuh2009.org logged in.
>> 12:40:06        Command:        CLNT FileZilla
>> 12:40:06        Response:       200 Noted.
>> 12:40:06        Command:        OPTS UTF8 ON
>> 12:40:06        Response:       200 UTF8 OPTS ON
>> 12:40:06        Status: Connected
>> 12:40:06        Status: Retrieving directory listing...
>> 12:40:06        Command:        PWD
>> 12:40:06        Response:       257 "/" is current directory.
>> 12:40:06        Command:        TYPE I
>> 12:40:06        Response:       200 Type set to I.
>> 12:40:06        Command:        PASV
>> 12:40:06        Response:       227 Entering Passive Mode
>> (80,240,192,165,13,182)
>> 12:40:06        Command:        LIST
>> 12:40:06        Status: Connecting to 10.176.203.200:8080...
>> 12:40:06        Status: Connection with proxy established, performing
>> handshake...
>> 12:40:06        Response:       Proxy reply: HTTP/1.0 403 Forbidden
>> 12:40:06        Error:  Proxy handshake failed: ECONNRESET - Connection
>> reset by peer
>> 12:40:27        Error:  Connection timed out
>> 12:40:27        Error:  Failed to retrieve directory listing"
>>
>> Then from access.log in squid:-
>> "1250847708.496      1 10.176.203.85 TCP_DENIED/403 1423 CONNECT
>> 80.240.192.165:3510 - NONE/- text/html
>> 1250847729.392  21724 10.176.203.85 TCP_MISS/200 486 CONNECT
>> www.icuh2009.org:21 - DIRECT/80.240.192.165 -"
>>
>> Please do help.
>
> Ah progress. Good.
>
> The problem is that FileZilla is trying to pass the data link through the
> proxy as a separate connection to a random (thus non-permitted) port.
>
> You have a choice:
>  allow your user IPs to CONNECT random ports on the range 1024-65535. (Okay
> if its just you and/or a trusted few using the proxy)
> or
>  find the settings in FileZilla which do data transfer through the control
> channel. (and advise any others doing this through the proxy to try that)
> or
>  use a dedicated FTP proxy (aka http://google.com/search?q=frox)
>
>
> Amos
> --
> Please be using
>  Current Stable Squid 2.7.STABLE6 or 3.0.STABLE18
>  Current Beta Squid 3.1.0.13
>
Received on Fri Aug 21 2009 - 10:33:39 MDT