FAQ  Search  Memberlist  Usergroups  Register  Profile  Private messages  Log in

FTP Some work... some don't

Forum Index -> alt.certification.cisco

Author	Message
Eddie Haskal Guest	Posted: Fri Aug 08, 2003 8:01 pm    Post subject: FTP Some work... some don't I thought I had my problems fixed, but apparently I do not... can someone tell me what some people can log in just fine and other people cannot? ! version 12.2 no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname "Cisco" ! no ip subnet-zero ! ip dhcp pool crwstest origin ipcp ! ! ! interface Ethernet0 ip address 192.168.1.2 255.255.255.0 ip nat inside ip dhcp relay information trusted no cdp enable hold-queue 32 in hold-queue 100 out ! interface Ethernet1 ip address dhcp client-id Ethernet1 ip nat outside no cdp enable ! ip nat inside source list 23 interface Ethernet1 overload ip nat inside source list 100 interface Ethernet1 overload ip nat inside source list 101 interface Ethernet1 overload ip nat inside source static tcp 192.168.1.11 3389 interface Ethernet1 3389 ip nat inside source static tcp 192.168.1.11 21675 interface Ethernet1 21675 ip classless ip http server ! ! Clear Access-List 23 for reconfigure no access-list 23 ! access-list 23 permit 192.168.1.0 0.0.0.255 ! ! Allow my Intranet to be able to talk to the world ! ! Clear Access-List 100 for reconfigure ! no access-list 100 ! access-list 100 permit ip any 192.168.1.0 0.0.0.255 ! Configuration to add: access-list 100 permit tcp remote.ip.address eq 21675 host your.external.ip.address eq 21675 log ! ! ! FTP Server initial setup - Incoming FTP request ! access-list 100 permit tcp any gt 1023 host 192.168.1.11 eq 21675 log ! ! Data channel creation for incoming FTP request, passive mode ! access-list 100 permit tcp any gt 1023 host 192.168.1.11 gt 1023 log ! ! FTP Server initial setup - Response to outgoing request ! access-list 100 permit tcp any eq 21675 192.168.1.0 0.0.0.255 gt 1023 established log ! ! Data channel responses for outgoing FTP request, passive mode ! access-list 100 permit tcp any gt 1023 192.168.1.0 0.0.0.255 gt 1023 established log ! access-list 100 permit ip any any ! ! Clear Access-List 101 for reconfigure ! no access-list 101 ! FTP Server initial setup - Response to incoming request ! access-list 101 permit tcp host 192.168.1.11 eq 21675 any gt 1023 established log ! ! Data channel responses for incoming FTP request, passive mode ! access-list 101 permit tcp host 192.168.1.11 gt 1023 any gt 1023 established log ! ! FTP Server initial setup - Outbound FTP request ! access-list 101 permit tcp 192.168.1.0 0.0.0.255 gt 1023 any eq 21675 log ! ! Data channel creation for outgoing FTP request, passive mode ! access-list 101 permit tcp 192.168.1.0 0.0.0.255 gt 1023 any gt 1023 log ! access-list 101 permit ip any any no cdp run ! line con 0 exec-timeout 120 0 password 7 06021A2247 login stopbits 1 line vty 0 4 exec-timeout 120 0 login local length 0 ! scheduler max-task-time 5000 end
Back to top
Paisleyskye Guest	Posted: Fri Aug 08, 2003 9:09 pm    Post subject: Re: FTP Some work... some don't I had a problem once with WS_FTP, but it wound up being because it was set to passive transfer. -- Tracey J. Rosenblath www.icertify.net "Eddie Haskal" <nospam@nospam.com> wrote in message news:lXOYa.160550$R92.14722@news2.central.cox.net... Quote: I thought I had my problems fixed, but apparently I do not... can someone tell me what some people can log in just fine and other people cannot? ! version 12.2 no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname "Cisco" ! no ip subnet-zero ! ip dhcp pool crwstest origin ipcp ! ! ! interface Ethernet0 ip address 192.168.1.2 255.255.255.0 ip nat inside ip dhcp relay information trusted no cdp enable hold-queue 32 in hold-queue 100 out ! interface Ethernet1 ip address dhcp client-id Ethernet1 ip nat outside no cdp enable ! ip nat inside source list 23 interface Ethernet1 overload ip nat inside source list 100 interface Ethernet1 overload ip nat inside source list 101 interface Ethernet1 overload ip nat inside source static tcp 192.168.1.11 3389 interface Ethernet1 3389 ip nat inside source static tcp 192.168.1.11 21675 interface Ethernet1 21675 ip classless ip http server ! ! Clear Access-List 23 for reconfigure no access-list 23 ! access-list 23 permit 192.168.1.0 0.0.0.255 ! ! Allow my Intranet to be able to talk to the world ! ! Clear Access-List 100 for reconfigure ! no access-list 100 ! access-list 100 permit ip any 192.168.1.0 0.0.0.255 ! Configuration to add: access-list 100 permit tcp remote.ip.address eq 21675 host your.external.ip.address eq 21675 log ! ! ! FTP Server initial setup - Incoming FTP request ! access-list 100 permit tcp any gt 1023 host 192.168.1.11 eq 21675 log ! ! Data channel creation for incoming FTP request, passive mode ! access-list 100 permit tcp any gt 1023 host 192.168.1.11 gt 1023 log ! ! FTP Server initial setup - Response to outgoing request ! access-list 100 permit tcp any eq 21675 192.168.1.0 0.0.0.255 gt 1023 established log ! ! Data channel responses for outgoing FTP request, passive mode ! access-list 100 permit tcp any gt 1023 192.168.1.0 0.0.0.255 gt 1023 established log ! access-list 100 permit ip any any ! ! Clear Access-List 101 for reconfigure ! no access-list 101 ! FTP Server initial setup - Response to incoming request ! access-list 101 permit tcp host 192.168.1.11 eq 21675 any gt 1023 established log ! ! Data channel responses for incoming FTP request, passive mode ! access-list 101 permit tcp host 192.168.1.11 gt 1023 any gt 1023 established log ! ! FTP Server initial setup - Outbound FTP request ! access-list 101 permit tcp 192.168.1.0 0.0.0.255 gt 1023 any eq 21675 log ! ! Data channel creation for outgoing FTP request, passive mode ! access-list 101 permit tcp 192.168.1.0 0.0.0.255 gt 1023 any gt 1023 log ! access-list 101 permit ip any any no cdp run ! line con 0 exec-timeout 120 0 password 7 06021A2247 login stopbits 1 line vty 0 4 exec-timeout 120 0 login local length 0 ! scheduler max-task-time 5000 end
Back to top
Eddie Haskal Guest	Posted: Fri Aug 08, 2003 10:09 pm    Post subject: Re: FTP Some work... some don't I think it is fixed now... I had Servu set to passive on my world IP vs. private IP... I'm a moron ;) "Paisleyskye" <danstevens@nospammountaincable.net> wrote in message news:bh0hv2$ah4$1@news1.mountaincable.net... I had a problem once with WS_FTP, but it wound up being because it was set to passive transfer. -- Tracey J. Rosenblath www.icertify.net "Eddie Haskal" <nospam@nospam.com> wrote in message news:lXOYa.160550$R92.14722@news2.central.cox.net... Quote: I thought I had my problems fixed, but apparently I do not... can someone tell me what some people can log in just fine and other people cannot? ! version 12.2 no service pad service timestamps debug uptime service timestamps log uptime service password-encryption ! hostname "Cisco" ! no ip subnet-zero ! ip dhcp pool crwstest origin ipcp ! ! ! interface Ethernet0 ip address 192.168.1.2 255.255.255.0 ip nat inside ip dhcp relay information trusted no cdp enable hold-queue 32 in hold-queue 100 out ! interface Ethernet1 ip address dhcp client-id Ethernet1 ip nat outside no cdp enable ! ip nat inside source list 23 interface Ethernet1 overload ip nat inside source list 100 interface Ethernet1 overload ip nat inside source list 101 interface Ethernet1 overload ip nat inside source static tcp 192.168.1.11 3389 interface Ethernet1 3389 ip nat inside source static tcp 192.168.1.11 21675 interface Ethernet1 21675 ip classless ip http server ! ! Clear Access-List 23 for reconfigure no access-list 23 ! access-list 23 permit 192.168.1.0 0.0.0.255 ! ! Allow my Intranet to be able to talk to the world ! ! Clear Access-List 100 for reconfigure ! no access-list 100 ! access-list 100 permit ip any 192.168.1.0 0.0.0.255 ! Configuration to add: access-list 100 permit tcp remote.ip.address eq 21675 host your.external.ip.address eq 21675 log ! ! ! FTP Server initial setup - Incoming FTP request ! access-list 100 permit tcp any gt 1023 host 192.168.1.11 eq 21675 log ! ! Data channel creation for incoming FTP request, passive mode ! access-list 100 permit tcp any gt 1023 host 192.168.1.11 gt 1023 log ! ! FTP Server initial setup - Response to outgoing request ! access-list 100 permit tcp any eq 21675 192.168.1.0 0.0.0.255 gt 1023 established log ! ! Data channel responses for outgoing FTP request, passive mode ! access-list 100 permit tcp any gt 1023 192.168.1.0 0.0.0.255 gt 1023 established log ! access-list 100 permit ip any any ! ! Clear Access-List 101 for reconfigure ! no access-list 101 ! FTP Server initial setup - Response to incoming request ! access-list 101 permit tcp host 192.168.1.11 eq 21675 any gt 1023 established log ! ! Data channel responses for incoming FTP request, passive mode ! access-list 101 permit tcp host 192.168.1.11 gt 1023 any gt 1023 established log ! ! FTP Server initial setup - Outbound FTP request ! access-list 101 permit tcp 192.168.1.0 0.0.0.255 gt 1023 any eq 21675 log ! ! Data channel creation for outgoing FTP request, passive mode ! access-list 101 permit tcp 192.168.1.0 0.0.0.255 gt 1023 any gt 1023 log ! access-list 101 permit ip any any no cdp run ! line con 0 exec-timeout 120 0 password 7 06021A2247 login stopbits 1 line vty 0 4 exec-timeout 120 0 login local length 0 ! scheduler max-task-time 5000 end
Back to top
Display posts from previous: All Posts1 Day7 Days2 Weeks1 Month3 Months6 Months1 Year Oldest FirstNewest First

	Forum Index -> alt.certification.cisco	All times are GMT
Page 1 of 1