Community discussions

MikroTik App
  4. RouterOS
  5. Beginner Basics

FTP out not working

Locked
 
martijnberk
just joined
Topic Author
Posts: 4
Joined: Fri Apr 07, 2017 10:00 pm

FTP out not working

Fri Apr 07, 2017 10:10 pm

hi all,

i have an RB3011UiAS-RM with Ether1 connected to fiber with internet IP static, ether2 is 192.168.1.0/24 with DHCP

everything is basic (firewall) and using masquerade and NAT to connect to fiber.

the strange thing is that FTP to the internet is not working, every machine on the inside network is not getting a connection on FTP. the FTP helper is on and there are no rules blocking port 21 to the internet.

software version is V6.38.5

can anyone give me some advice?
Top
 
skuykend
Member Candidate
Member Candidate
Posts: 274
Joined: Tue Oct 06, 2015 7:28 am

Re: FTP out not working

Sat Apr 08, 2017 5:17 am

Do your filter forward rules include accepting 'related' connections as well as 'established'?
Top
 
User avatar
blajah
Member Candidate
Member Candidate
Posts: 222
Joined: Fri Jun 12, 2015 8:58 pm
Location: Belgrade, Serbia
Contact:
Contact blajah

Re: FTP out not working

Sat Apr 08, 2017 9:18 am

Can you telnet to ftp server from host on your lan?(using port 21)
Top
 
martijnberk
just joined
Topic Author
Posts: 4
Joined: Fri Apr 07, 2017 10:00 pm

Re: FTP out not working

Sat Apr 08, 2017 4:45 pm

Can you telnet to ftp server from host on your lan?(using port 21)
no telnet possibe, connection timed out
Top
 
martijnberk
just joined
Topic Author
Posts: 4
Joined: Fri Apr 07, 2017 10:00 pm

Re: FTP out not working

Sat Apr 08, 2017 4:47 pm

Do your filter forward rules include accepting 'related' connections as well as 'established'?
how do i do that? can i print a list of the NAT rules or do you need to see the firewall rules?
Top
 
skuykend
Member Candidate
Member Candidate
Posts: 274
Joined: Tue Oct 06, 2015 7:28 am

Re: FTP out not working

Sat Apr 08, 2017 6:08 pm

how do i do that? can i print a list of the NAT rules or do you need to see the firewall rules?
That would be part of the firewall 'filter' rules, not NAT. By default, it's part of the first FastTrack and Accept forward rules. But if you're getting connection timeouts with specifying port 21 via telnet to the ftp servers, something else is likely wrong as that's the main ftp command port and not the related data channels.

But an export of all your firewall rules may help.
Top
 
martijnberk
just joined
Topic Author
Posts: 4
Joined: Fri Apr 07, 2017 10:00 pm

Re: FTP out not working

Mon Apr 10, 2017 12:17 pm

how do i do that? can i print a list of the NAT rules or do you need to see the firewall rules?
That would be part of the firewall 'filter' rules, not NAT. By default, it's part of the first FastTrack and Accept forward rules. But if you're getting connection timeouts with specifying port 21 via telnet to the ftp servers, something else is likely wrong as that's the main ftp command port and not the related data channels.

But an export of all your firewall rules may help.
the sollution was the option "local" as in the traffic should be local because the NAT was picking up the outgoing traffic and reversing it as in the NAT rule
Top
Locked

Who is online

Users browsing this forum: anav, baragoon, haedertowfeq, Hemhems, zosoft and 51 guests
  4. RouterOS
  5. Beginner Basics