Situation:
I have a local area network (LAN) with Level1 FBR 1405TX 4 port cable/xdsl router and two computers, one with XP, other win2k. I have set up two ftp servers on first one (XP system that is), trying to give an access to my friends.
Router has ip 192.168.2.1, computers have *.100 and *.101, manually assigned, with dhcp on router on and firewall on router off.

What I did so far:
Firstly, I installed serv-u ftp server, gave u/p and connected to it from my computer via Total Commander. Worked fine. As ip i used 212.13.231.87:8080 (sure, the ftp server is on port 8080, not 21). Then I tried connecting to my ftp server from the other computer on *.100. Worked fine. Used the same ip. Then i've tryed with 192.168.2.101:8080. Also worked. At this moment i have to say the NAT routing was set (Virtual server) from public ip 8080 to local ip 8080. M'kay.
Then friend of mine tried to connect. And got this error: 425 Cannot open data connection (10061) . What does this mean? His ftp client (CuteFTP) wasn't able to list the files on my root dir. He got connected, u/p ok, but then he got this error. Too bad I said and tried everything to fix it. We tried pasv and without pasv, permissions were set, ip was aloud... nothing.

What I did next:
I have installed BulletProof. Set up an account, connected from my computer, connected from the other local computer: it worked. My friend tried and got: 530 PORT command only accepts client IP address. Huh, I went under Advanced, Block server-to-server transfer (FXP...) and put a tick out. Then he tried again and got again 425 error as before on serv-u. Still, it worked fine from Total cmd on my comp and on the other in local lan. He too was using Total cmd, Ie and Opera, none of them worked.
Oh, bulletproof is working on port 8081, with routing enabled (so connecting to 212.13.231.87:8081.

The Question:
What to do and where to do it to make my ftp server work? Cookies n' milk does not help. What could be the solution and where exactly is the problem?

The End
I have tried many things up till now before i came here to bother you ;)
Hope you don't mind such a long post, but i have to explain things as much as possible to ensure the solution. With your help, of course. So please, if anyone has ANY ideas, write them and I'll try it out. Sorry for the typos, best regards, Gemini

Welcome to XPC!

First a couple more questions...Who is your ISP? Have you verified that they do allow server services (ie they arent blocking).

Have you tried running the ftp servers on the standard ftp ports? (20 & 21)?

tnx for your welcome!
my ISP is Softnet, KKS Networks, Slovenia. They block most of the ports under 5000 (except some standard like 25, 23, 110 etc.). 21 is blocked, so is 20. Anyway, you cant use any lover than 5000 for let's say web server (usually on 80) and ftp (21 as you said). Before i had a ftp server AND web server, now they don't work with a router (they only work locally as i wrote before).

gotcha....let me put on my thinking cap and see if anything comes to mind...

edit...Just found a pdf of your router? this is what you have correct? http://www.level-one.de/drivers/manual_PDF/FBR-1405TX(EN).pdf

EDIT : I should try and read more carefully next time :o

Originally posted by Gemini
I have a local area network (LAN) with Level1 FBR 1405TX 4 port cable/xdsl router
As i wrote in my first post, this is what i have, connected to my terayon modem.

any ideas? please, cos i really need this one. thanks in advance.

Well if your sure your ISP isnt blocking the other ports and you have properly forwarded the correct ports on your router then I would have to say that your router is not correctly forwarding the ports. Have you tried connecting the server directly to your internet connection ?(bypassing any router/firewall)

Of course, this worked. I mean everything works well without the router, but this way i am unable to use internet on all of my computers locally.
Thing is router is forwarding correctly because i can see the user is logged in and everything, they just don't receive file list (the error in my first post). So i guess it's something wrong with passing the list back to the connected user (tcp out). Or is it just a setting on the server?

I'm having the exact same problem.

I've had an ftp server for years. I hate routers and would never ever ever ever use one. But my wife made me get one so she can use her wifi PDA.

So now i'm stuck routing. I can get to my ftp server from an external unix box using unix FTP. I can login. But I can only get a filelist if I type "passive" and turn passive mode OFF (yes this turns it off).

If I login with FlashFXP, my preferred FTP client, I can't get it. I don't get a filelist. I get: 425 Cannot open data connection(10061).
List Error

I get this regardless of whether passive is on or off.

It is not my ISP blocking ports-- like I said I can connect just fine... I just can't DO anything.

ClintJCL, maybe I can help this time...
See, actually I haven't managed to fix things with Bulletproof, but i tried the newer version of serv-u, 5.0.0.0. I am running this ftp server on port 8080 (forwarding it, of course). And now practically everyone can connect to my server, they only need to use PORT method, so NO PASSIVE! With passive, they get the same error as before.
And this even works with router firewall turned on.
Hope it might help, best wishes.

I am looking for a way to make MY server work. It is BulletProof/G6. I wouldn't dream of switching server software after 3+ yrs of flawless operation. That would only create additional work for me. But thanks for the suggestion.

Aight, but in this situation I am no good for help :)
Try with port mode or try with switch instead of the router.

So what did you fellas ever figure out with the G6 Bulletproof FTP Server issue where it would not let users LIST the remote directory on your server. I have the same problem. I thought it might have been the Internet Worm Protection in Norton Antivirus 2005. Prior to Norton I never had this problem. My ISP does not filter anything either. One of you guys said you used Serv-U after G6. Do you like it? Same functionality and ease of use? Thanks.

I couldn't tell you for sure, because my server has been incapacitated for several months for an unrelated reason... :cuffed:

However, I think it had to do with a separate configuration area, where you had to enter in another IP address. I dunno if it's the routers, yours, or what... But it had to do with IP addresses.

There was also some router configuration involved, but ultimately we got static IP addresses and stopped using a router altogether. Much more convenient. :chug:

Serv-U worked just fine for me, and so did the Globalscape secure ftp server (http://www.globalscape.com/gsftps/), so maybe you should try one of those two.

Seems a lot of people have this issue with FTP and their users not being able to list the directories/files in many different variables. I really appreciate the feedback fellas. Like most, I am trying to access my files securely remotely and then give access to some trusted users.

Okay...I tried Serv-U FTP Server Software. Same thing. I disabled Norton Antivirus all together, told my Linksys Router make my internal PC the DMZ Host, and changed my ftp port to 56789 instead of 21. Still the same thing no matter if I use G6 Bulletproof or Serv-U.

I am really stumped. I will try Globalscape FTP Server Program and report back. Again, thanks so much for the feedback.

Greasepaint

Okay I tried Globalscape (Cute FTP) and WS_FTP Server. No dice. I was ready to just slap a password on a directory and an HTTPD service, even though this would not allow me to upload.

AND THEN...

Currently I have the demo version of GlobalScape's Cute FTP. So I had this crazy farout idea to just go back to using port 21 on my router to see if it would work. Insanity right, because I had already done the DMZ thing and it did not work. I had previously stopped using 21 because of people trying to attack me and Norton Antivirus using port 21 to do updates. But just for grins, I told my Linksys Router begin forwarding all port 21 requests to my inside machine's IP that was running the FTP service. I VPN'd to my company's network using another PC, came back to my network in from the outside to simulate a test. I held my breath and clicked.

I just about fell out of my chair. It worked...and so smoothly. I have been dealing with this problem for so long I did not even know how to act of even if I could beleive my eyes. I had to be sure. I called one of my users to verify. We tried it. He fell off his chair! Better him than me. We squeeled with delight like girls seeing the Beatles!

Previously this had not worked. I think I remember telling Norton Antivirus to stop using 21 for it's updates at some point in the past but to dig through Norton to find out what the heck I actually did in Norton (if anything) would take me too long...and it is working now so no need. Seems that some of my users ISP's also filter FTP if not used on port 21. Too many variables...the pressure!

Big thanks to yall...
Greasepaint

OK, this thread has been dead a while, but I encountered the same problem with BPFTP Server 2.3.1.26.

Error msg: 425 Cannot open data connection (10061)

Solution: reboot the router.

Hope that helps.