FTP tunneling query

Matt Johnston matt at ucc.asn.au
Fri Oct 9 11:41:33 WST 2009


On Thu, Oct 08, 2009 at 10:06:18PM -0500, Rob Landley wrote:
> On Wednesday 07 October 2009 11:29:48 Matt Johnston wrote:
> > Hi,
> >
> > Dropbear doesn't know anything particular about FTP. I
> > suspect that forwarding FTP through dropbear (or any other
> > SSH server) won't work very well, given they dynamic
> > port allocation. Perhaps OpenSSH client with socks
> > forwarding might work?
> 
> Actually ftp has a "passive" mode that's often the default these days that 
> uses the existing connection rather than dialing back the other way (which was 
> an insane design to begin with and gives masquerading routers hives).  When it 
> isn't typing "passive" generally enables it.

I don't think passive mode uses the single port 21
connection - rather it makes a new TCP connection to the
server on a random port? A single SSH port forward won't
cope with that.

Matt


More information about the Dropbear mailing list