0
Running nginx and a fairly normal lemp stack i'm trying to allow a colleague to connect from his house.
I've allowed access to his IP inside /etc/nginx/sites-enabled
I've tested his credentials using a standard ftp client (filezilla) and it logs me into the server no problem. When he trys to run it on his end it just keeps timing out. We are running sftp with a normal username and password on our website.
No port is necessary on my end. Any ideas? when i tail -f nginx.error.log
.. i get this 2018/01/30 20:12:42 [error] 10051#0: *70 access forbidden by rule.
maybe i have to edit the firewall too?
is the connection on your end going thru a router? if so have you forwarded port 22 via the router? (Port 22 is used by sftp on a local connection it's assumed, if your box has a router between it and the internet, then port forwarding on the router must be enabled for port 22) – Tyson – 2018-01-31T16:34:20.237
@Tyson my connection is going through a netgear router / cable modem combo, correct. It works fine on my filezilla when i connect sftp to the remote server using port 22 or not using port 22. I'll ask my partner if he's going through a router.. he is the one having issues. – Supplement – 2018-01-31T17:40:01.477
The client end doesn't matter, outbound ports are opened on demand. On the server end the Inbound port must be forwarded at the router. – Tyson – 2018-01-31T17:43:14.123
@Tyson The access is controlled by IP address, i believe. If the address keeps a static IP (for one user) address it should work fine. If it does not, then it will only work 1 time. << i believe this is the problem because I used it first to test and it's assigned to my ip? Would that make sense, or no? If so how can i fix this issue... – Supplement – 2018-01-31T18:07:33.230
Are you sure you've allowed access to his public IP? If so, then let him try passive ftp. – Gerard H. Pille – 2018-01-31T19:55:19.167
What does passive ftp do? I'll have him try that later. @GerardH.Pille – Supplement – 2018-01-31T21:58:35.157
It does ftp, what else? But since routers are involved and probably firewalls, please read https://stackoverflow.com/questions/1699145/what-is-the-difference-between-active-and-passive-ftp#1699163
– Gerard H. Pille – 2018-02-01T01:40:21.980How is nginx concerned in this? – Gerard H. Pille – 2018-02-01T01:48:39.993
@GerardH.Pille Nginx is where i whitelist various ips for various things. – Supplement – 2018-02-01T04:07:13.863
If one of this various things is FTP, are you sure nginx can handle that? There are people saying it can't: https://stackoverflow.com/questions/35472363/how-to-reroute-sftp-traffic-via-nginx
– Gerard H. Pille – 2018-02-01T08:49:29.543