I am looking for a way to debug/diagnose the LAN on my work which consists of multiple subnets.
More specifically I am trying to find some good tools (windows/linux) that can give me info on which ports are open or which machines/networks are accessible from a given machine.
Currently I have installed a FileZilla FTP server on a virtual windows 7 machine hosted in vSphere. I have verified that the ftp server is running as a service and configured with a single user admin
that has a single shared folder c:\test
. But when I try to connect from my laptop the server log gives:
(000012)18-12-2013 15:46:28 - admin (172.22.74.144)> PWD
(000012)18-12-2013 15:46:28 - admin (172.22.74.144)> 257 "/" is current directory.
(000012)18-12-2013 15:46:28 - admin (172.22.74.144)> TYPE I
(000012)18-12-2013 15:46:28 - admin (172.22.74.144)> 200 Type set to I
(000012)18-12-2013 15:46:28 - admin (172.22.74.144)> PASV
(000012)18-12-2013 15:46:28 - admin (172.22.74.144)> 227 Entering Passive Mode (172,22,80,8,192,35)
(000012)18-12-2013 15:46:28 - admin (172.22.74.144)> MLSD
(000012)18-12-2013 15:46:39 - admin (172.22.74.144)> 425 Can't open data connection.
(000012)18-12-2013 15:48:39 - admin (172.22.74.144)> 421 Connection timed out.
(000012)18-12-2013 15:48:39 - admin (172.22.74.144)> disconnected.
I have tried reading this guide but cannot see what is needed:
https://wiki.filezilla-project.org/Network_Configuration
And here it says:
https://forum.filezilla-project.org/viewtopic.php?f=6&t=24925
that ftp used tcp, so do I need to forward some ports?
On the windows server I have tried to run netstat -an
which gives:
TCP [::]:21 [::]:0 LISTENING
TCP [::]:135 [::]:0 LISTENING
TCP [::]:445 [::]:0 LISTENING
TCP [::]:3389 [::]:0 LISTENING
TCP [::]:49152 [::]:0 LISTENING
TCP [::]:49153 [::]:0 LISTENING
TCP [::]:49154 [::]:0 LISTENING
TCP [::]:49155 [::]:0 LISTENING
TCP [::]:49157 [::]:0 LISTENING
TCP [::1]:14147 [::]:0 LISTENING
But donĀ“t know how to interpret the above output.
I seems that I can telnet to the machine on port 21 telnet my-windows-server 21
:
220-FileZilla Server version 0.9.41 beta
220-written by Tim Kosse (Tim.Kosse@gmx.de)
220 Please visit http://sourceforge.net/projects/filezilla/
Does that indicate that the port is open?
More generally what are the first things to check/verify when solving a problem like this?
Best Answer
Are your subnets filtered (ACL, firewall...) ?
The
above output
you are talking about shows you both listening and non-listening ports on your server in numerical addresses, with the interface they listen to (and protocol TCP/UDP).To debug this,
Telnet host port
is a good starting point to check if a port is listening and open over the network, but will only works against a TCP port. In your case, yes, that indicates that port 21 is open.You can also use
nmap myserver
to get a list of open ports for a given target host, it is also able to check UDP ports, and it runs on both windows and linux Os.Also, i would use a network sniffer like
tshark
orwireshark
at server side to see what is happening.Note that there is 2 FTP modes : Active or Passive :
In your case, i think your problem has to deal with it. Regarding your error log seems you are in passive mode.
I would try Active mode.