No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

AR Router Troubleshooting Guide

This Product Documentation provides guidance for maintaining AR Enterprise Router, covering common information collection and fault diagnostic commands, typical fault troubleshooting guide, and troubleshooting.
Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
An FTP Connection Fails to Be Set Up

An FTP Connection Fails to Be Set Up

Common Causes

This fault is commonly caused by one of the following:

  • No reachable route is available between the FTP client and server.
  • The FTP server is not enabled.
  • The FTP server does not use the default port number, and the FTP client does not specify the port number of the FTP server when connecting to the FTP server.
  • The FTP user account, working directory, and user level are not configured on the FTP server.
  • The number of users that have logged in to the FTP server reaches the upper limit.
  • An ACL is configured on the FTP server and does not allow access from this FTP user.
  • FTP packets are blocked by the firewall.
  • FTP packets are blocked by a NAT device.

Troubleshooting Flowchart

When an FTP client fails to connect to the FTP server, rectify the fault according to Figure 13-4.

Figure 13-4  FTP connection failure troubleshooting flowchart

Troubleshooting Procedure

NOTE:

Saving the results of each troubleshooting step is recommended. If your troubleshooting fails to correct the fault, you will have a record of your actions to provide Huawei technical support personnel.

Procedure

  1. Check whether the FTP client and server are reachable to reach other.

    Run the ping command on the FTP client and server to check network connectivity between them. If the ping operations fail, an FTP connection cannot be set up between the FTP client and server.

    Check whether there is any unstable network connection that causes packet loss or login failures. Rectify the ping failure according to The Ping Operation Fails, to ensure that the network connection between the FTP client and server is stable.

  2. Check whether the FTP server is enabled.

    Run the display ftp-server command in any view of the FTP server to check whether the FTP server function is enabled.

    • If the following information is displayed, the FTP server is disabled:
      <Huawei> display ftp-server
      Info: The FTP server is already disabled.
      Run the ftp server enable command in the system view to enable the FTP server.
      <Huawei> system-view
      [Huawei] ftp server enable
      Info: Succeeded in starting the FTP server.
    • If the following information is displayed, the FTP server is enabled:
      <Huawei> display ftp-server
         FTP server is running 
         Max user number                 5
         User count                      0
         Timeout value(in minute)        30
         Listening port                  21
         Acl number                      0
         FTP server's source address     0.0.0.0

  3. Check whether the port number that the FTP client uses to connect to the FTP server is the listening port number of the FTP server.

    1. Run the display tcp status command in any view to check the TCP listening ports include the default FTP service port 21.

      <Huawei> display tcp status
      TCPCB     Tid/Soid Local Add:port         Foreign Add:port       VPNID  State
      2a67f47c  6  /1    0.0.0.0:21            0.0.0.0:0              23553  Listening
      2b72e6b8  115/4    0.0.0.0:22             0.0.0.0:0              23553  Listening
      3265e270  115/1    0.0.0.0:23             0.0.0.0:0              23553  Listening
      2a6886ec  115/23   10.137.129.27:23       10.138.77.43:4053      0      Established
      2a680aac  115/14   10.137.129.27:23       10.138.80.193:1525     0      Established
      2a68799c  115/20   10.137.129.27:23       10.138.80.202:3589     0      Established
      
    2. Run the display ftp-server command in any view to check the listening port number of the FTP server.

      <Huawei> display ftp-server
         FTP server is running 
         Max user number                 5
         User count                      0
         Timeout value(in minute)        30
         Listening port              21
         Acl number                      0
         FTP server's source address     0.0.0.0

    • If the listening port number of the FTP server is not 21, run the ftp server port command to change the port number to 21.
      <Huawei> system-view
      [Huawei] undo ftp server
      Info: Succeeded in closing the FTP server.
      [Huawei] ftp server port 21

      Alternatively, specify the listening port number of the FTP server on the FTP client.

  4. Check whether the authentication information and working directory are configured for the FTP user.

    The user name, password, working directory, and user level are mandatory for an FTP user. An FTP user cannot log in to the FTP server if the FTP working directory or user level is not specified.

    1. Run the system-view command to enter the system view.
    2. Run the aaa command to enter the AAA view.
    3. Run the local-user user-name password { cipher | irreversible-cipher } password command to configure a local user name and password.
      NOTE:

      -

    4. Run the local-user user-name ftp-directory directory command to specify an FTP working directory for the FTP user.
    5. Run the local-user user-name privilege level level command to set the user level to 3 or higher. The FTP connection cannot be set up if the user level is lower than 3.

    The service type is optional for a local user. By default, the system supports all the service types. If one or some of service types are selected, the system provides only the specified services for the user.

    Run the local-user user-name service-type ftp command to set the service type for the local user to FTP.

  5. Check whether the number of users on the FTP server reaches the upper limit.

    Run the display ftp-users command to check whether there are already five FTP users on the FTP server.

    If the number of existing FTP users has reached 5, run the ftp timeout command to set the idle connection timeout interval. When idle FTP connections are terminated and the number of FTP users falls below the upper limit, the FTP client can connect to the FTP server.

  6. Check whether an ACL is configured on the FTP server.

    Run the display ftp-server command in any view to check the FTP server configuration.

    If an ACL is configured on the FTP server, the FTP server allows only access from the IP addresses permitted by the ACL rules.

  7. Check whether FTP packets are blocked by the firewall.

    Check whether the firewall is enabled on the FTP client and blocks FTP packets.

    If FTP packets are blocked by the firewall, disable the firewall or set the firewall working mode to passive.

  8. Check whether FTP packets are blocked by a NAT device.

    Check the NAT configuration on the network. If FTP packets are blocked by a NAT device on the network, modify or delete the NAT configuration.

  9. Check the statistics about packets sent to the CPU of the FTP server.

    Run the display cpu-defend statistics packet-type ftp-client command multiple times to check whether the number of FTP packets received on the FTP server keep increasing when the FTP attempts to connect to the FTP server.

    <Huawei> display cpu-defend statistics packet-type ftp-client
    -----------------------------------------------------------------------         
    Packet Type               Pass Packets        Drop Packets                      
    -----------------------------------------------------------------------         
    ftp-client                          71                   0                      
    ----------------------------------------------------------------------
    

    If the number of received FTP packets does not increase, FTP packets sent from the FTP client do not reach the FTP server. Check network devices between the FTP client and server.

    If the number of received FTP packets increases, go to step 10.

  10. Collect the following information and contact technical support personnel.

    • Results of the preceding troubleshooting procedure
    • Configuration file, logs, and alarms of the device (FTP server)

Translation
Download
Updated: 2019-05-10

Document ID: EDOC1000079719

Views: 448285

Downloads: 4305

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next