*New 11.3 series Release:
2019-10-05: XigmaNAS 11.3.0.4.6928 - released, 11.2 series are soon unsupported!

*New 12.0 series Release:
2019-10-05: XigmaNAS 12.0.0.4.6928 - released!

*New 11.2 series Release:
2019-09-23: XigmaNAS 11.2.0.4.6881 - released!

We really need "Your" help on XigmaNAS https://translations.launchpad.net/xigmanas translations. Please help today!

Producing and hosting XigmaNAS costs money. Please consider donating for our project so that we can continue to offer you the best.
We need your support! eg: PAYPAL

Masquerade address when connecting from the internal LAN

File transfer protocol.
Forum rules
Set-Up GuideFAQsForum Rules
Post Reply
pozz
Starter
Starter
Posts: 41
Joined: 03 May 2013 23:46
Status: Offline

Masquerade address when connecting from the internal LAN

#1

Post by pozz » 01 Mar 2015 17:03

I configured FTP service for external connections. NAS4Free is behind a NAT ADSL router, so I configured Masquerade Address (dyndns hostname) and the passive range ports. All works ok from external.

Now if I connect from inside the LAN (client on 192.168.1.10) using the internal NAS server (192.168.1.2), it returns the external IP address during passive data transfers. I thought it wasn't a real problem, because I already checked external transfers, but it really doesn't work. I see on Wireshark that the client tries to make a connection to the correct combination <external ip address>:<passive port>, I see also some answers from the server (SYN, ACK), but data transfers don't occur.

If I setup the FTP client on the internal LAN to use the external NAS ip address (dyndns hostname), all works ok.

I know I have found a solution, but I'm wondering why this strange behaviour.

The only explanation that I could think of, is the following. The server (actually proFtpd) starts listening on a port in the passive range after "Entering passive mode", but it accepts incoming connections only from the ip address that started the initial ftp connection. If 192.168.1.10 starts the connection to 192.168.1.2, the server knows that the client is 192.168.1.10. After entering passive mode, it listens for connections only from 192.168.1.10.
But the client makes a connection to the external IP address (the answer of PASV command), so it seems the request comes from the external IP address and doesn't allow the data transfer.

Is it correct?

doktornotor
Advanced User
Advanced User
Posts: 182
Joined: 16 May 2017 00:22
Status: Offline

Re: Masquerade address when connecting from the internal LAN

#2

Post by doktornotor » 19 Sep 2017 09:21


Post Reply

Return to “FTP”