OPNsense Forum

Archive => 18.1 Legacy Series => Topic started by: hirschferkel on January 31, 2018, 09:57:38 am

Title: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: hirschferkel on January 31, 2018, 09:57:38 am
Since my upgrade to 18.1 our FTP-server can not be accessed from external connections anymore. Users get a wired screen, but the FTP-server is working perfect locally. So the only thing we have changed was the upgrade from 17.7 to 18.1.
Has anyone an idea, what could cause this problems, now? Firewall rules an port forward seem are o.k., as the welcomemessage of the FTP-server is "Welcome ...."?

When you try to connect to the server from local network, you get the required website via port 80 which will not show up from externally. So instead of all ports are being set correctly, it somehow looks like a port-forwarding issue, isn't it?

I really do not have any idea, why the sever will require user login and password, now...

Best
Title: Re: No FTP access from ftp-server after update to 18.1
Post by: hirschferkel on January 31, 2018, 10:31:17 am
O.k. I found it. Still a BUG in 18.1. Production Series!
It's exactly the issue from:

https://github.com/opnsense/core/issues/2051

After changing the Nat rules from Alias to Network-adress everything runs again! ... never install a new release from OPNsense...
Title: Re: Alias Bug in 18.1: FTP access from ftp-server after update to 18.1
Post by: hirschferkel on January 31, 2018, 10:32:47 am
But what can I do now to bring back Aliases?...
As soon as i use an Alias with a portrange it will not work anymore.
Title: Re: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: Dominian on January 31, 2018, 03:08:35 pm
There's a thread on this already: https://forum.opnsense.org/index.php?topic=7078.0

There's a patch there that was provided as a quick fix :)
Title: Re: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: hirschferkel on January 31, 2018, 03:22:34 pm
I found the patch here: https://github.com/opnsense/core/issues/2051

But it does not work!
 :-\
Title: Re: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: Dominian on January 31, 2018, 03:48:28 pm
Instead of going to github, just log into the command line of OPNsense and run this command:

Code: [Select]
opnsense-patch 57f51d2943
Title: Re: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: hirschferkel on January 31, 2018, 04:00:37 pm
As I wrote it did not work after the patch was installed and all services were restarted.
Title: Re: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: Dominian on January 31, 2018, 04:02:58 pm
Well, the thing is, it IS working.. at least the patch may not have been the issue or resolution.

Looking at your screenshot again, you are connected to the FTP server... so the NAT is working properly.

Is the FTP server passive?
Title: Re: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: hirschferkel on January 31, 2018, 04:20:47 pm
The NAT is only working because I added all rules manually for every single port. I thought I wrote that?
The FTP-Server is active.

And again: It is working with manually added port forwardings, but it is NOTworking with created rules whichone would use in: Firewall > NAT > Port forward > edit forwarding rule > Filter rule association
Title: Re: Alias Bug in 18.1: No FTP access from ftp-server after update to 18.1
Post by: hirschferkel on February 07, 2018, 10:45:57 am
After Updating to 18.1.1 it runs again. Obviously there were some more issues.