Article delegate-en/107 of [1-5169] on the server localhost:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]

Newsgroups: mail-lists.delegate-en

[DeleGate-En] Fw: [DeleGate-En] Still some problem with Proxy FTP
24 Sep 1998 08:19:23 GMT "Piero Berritta" <plqaabdyi-mnhipghms5jr.ml@ml.delegate.org>


>Remember that the current DeleGate cannot insert bi-directional
>type filters (like SSLway) into FTP data channel.  SSLway filter
>can be inserted into control channel, and the XDC is a DeleGate's
>specific transfer mode which conveys data on control channel,
>thus transferred data can be encrypted only between FTP DeleGates.



Hi Yutaka,
sorry cause I was not very clear.
The configuration I meant was:

Client:
delegated -P21 FSV="sslway -co" SERVER=ftp://ftp_server_name:8022
PROXY=proxy_name:8021

Proxy
delegated -P8021 FSV="sslway -co" FCL="sslway -ac -cert certficate.pem"
SERVER=ftp

Server:
delegated -P8022 FCL="sslway -ac -cert certificate.pem"
SERVER=ftp://ftp_server_name:21

With the last patch I have completely solved the problem of Windows NT crash
but, when I dump connection between Client and Proxy (both Delegate), I can
see data not encrypted (control commands are encrypted) even if the log
output says that XDC mode is activated. This is a log:

09/24 09:19:49.90 [72] 4+0/7: FTP-CACHE: LIST [] = [][]:0
09/24 09:19:49.90 [72] 4+0/7: ---- XDC data_relay CLIENT (RECV).
09/24 09:19:50.01 [72] 4+0/7: mkclnt_sock: connected
192.168.111.31:8021->calabr
one.fst.it/192.168.111.50:1068 [23]
09/24 09:20:08.52 [72] 4+0/11: PORT [192,168,111,50,4,45] >> 200 PORT
command su
ccessful [translated to PASV by DeleGate].^M
09/24 09:20:08.57 [72] 4+0/12: FTP-CACHE: LIST [] = [][]:0

When I make a direct connection between a client and a server (both
Delegate), for example with the following configuration:

Client:
delegated -P21 FSV="sslway -co" SERVER=ftp://ftp_server_name:8021

Server:
delegated -P8021 FCL="sslway -ac -cert certificate.pem"
SERVER=ftp://ftp_server_name:21

data are completely encrypted (control command and data) and I can see the
XDC mode activated like in the previous log. This is a dump of what happens
in this last case:

09/24 10:02:55.93 [311] 1+0/19: FTP-CACHE: LIST [] = [][]:0
09/24 10:02:55.93 [311] 1+0/19: -- XDC to PASV
09/24 10:02:55.94 [311] 1+0/19: --- XDC data_relay SERVER (RECV).
09/24 10:02:56.02 [311] 1+0/19: -- Tried freadTIMEOUT() for EOF file.
09/24 10:02:56.03 [311] 1+0/19: -- Tried freadTIMEOUT() for EOF file.
09/24 10:02:58.19 [311] 1+0/22: mkclnt_sock: connected
192.168.111.31:1242->suri
cato.fst.it/192.168.111.31:1248 [21]
09/24 10:02:58.20 [311] 1+0/22: PORT [192,168,111,50,4,131] >> 200 PORT
command
successful [translated to PASV by DeleGate].^M
09/24 10:02:58.23 [311] 1+0/23: FTP-CACHE: LIST [] = [][]:0
09/24 10:02:58.23 [311] 1+0/23: -- XDC to PASV

The only difference I can see between logs, is the presence of the line XDC
to PASV.
Could be this the problem of data not encrypted in the previous case?

Thank you for your help.

Ciao

Piero


  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V