FTP error ECONNREFUSED

Discussion in 'General' started by AfonsoD3v, Aug 30, 2018.

  1. AfonsoD3v

    AfonsoD3v New Member

    Hello all,

    A strange problem came up in my server using ISPConfig 3.0.5.4p8

    Everything was fine with FTP before today... I've searching and looking in logs, config files but don't see any FTP error...

    There is nothing in the iptables and ufw configured to deny access.

    I can connect from inside using: ftp 127.0.0.1 and ftp LAN-IP but not from other machine.
    This means that the service pure-ftpd-mysql is running and I can see it with: service --status-all
    And with sudo netstat -nap | grep 21 I can see that it is listening.
    But pure-ftpd service is not running, should it be?

    However, looking at /etc/pure-ftpd/db/mysql.conf this file is empty (should it be?)

    In /var/log/pure-ftpd/transfer.log is empty, although older (before today) files have logs.

    From syslog, I can only see logs about na internal connection (seems a cron job):
    Aug 30 14:30:01 www pure-ftpd: ([email protected]) [INFO] New connection from 127.0.0.1
    Aug 30 14:30:01 www pure-ftpd: ([email protected]) [INFO] Logout.

    I can think that this is a networking/firewall problem but my network collegue says nothing changed...

    I'm running out of ideas... Any ideas are welcome! Thanks!
     
  2. Jesse Norell

    Jesse Norell Well-Known Member

    If nothing changed on the server/network, it probably changed on the client end, eg. switched from passive mode to active mode (or vice-versa), or enabled TLS when previously it was unencrypted. You should setup a passive port range for ftp and make sure it's open in your firewall(s) and forwarded in any router port forwards, then set your client to use passive mode.
     
  3. AfonsoD3v

    AfonsoD3v New Member

    I just discovered that I can stablish connection from some LAN addresses but not others.
    Everything is pointing for a network/firewall issue, but still one possibility:
    Where would it be configured for PureFTP to reject some IP clientes?
     
  4. Taleman

    Taleman Well-Known Member HowtoForge Supporter

    See /var/log/fail2ban.log
     

Share This Page