curl-users
Re: Problem using Ftp ssl through proxy.
Date: Thu, 05 Jan 2006 10:48:40 -0800
I think your problem is that, like many others, your proxy server don't
support FTPS. Proxy servers that don't support FTPS don't know how to
decode the SSL encrypted communication that needs to exist between the
client and the server.
See here for a list of compatible clients, servers and proxy servers:
http://www.ford-hutchinson.com/~fh-1-pfh/ftps-ext.html
However, looking at the specs for your proxy, it looks like it does
support SOCKS, which I think Curl supports as well. Maybe try using the
SOCKS proxy settings for your communications.
-Ben
Martijn ten Heuvel wrote:
>2006/1/5, Daniel Stenberg <daniel_at_haxx.se>:
>
>
>>On Thu, 5 Jan 2006, Martijn ten Heuvel wrote:
>>
>>
>>
>>>Any ideas what could be the problem here? Or am i trying something
>>>that simply isn't possible?
>>>
>>>
>>...
>>
>>
>>>>CONNECT 172.27.145.185:1061 HTTP/1.0
>>>>Host: 172.27.145.185:1061
>>>>User-Agent: curl/7.15.0 (hppa2.0w-hp-hpux11.11) libcurl/7.15.0 OpenSSL/0.9.8a zlib/1.2.3 libidn/0.5.20
>>>>Proxy-Connection: Keep-Alive
>>>>
>>>>
>>Is your proxy setup to allow CONNECT requests to "any" port like this?
>>
>>Either way, the fact that the proxy doesn't respond at all seems like a proxy
>>flaw to me.
>>
>>
>
>curl puts this last request in the proxytunnel, tcpdump on the unix
>host sees it going out to the proxy, but the ftpserver on the other
>side doesn't get a new connection. It does, however, get the exact
>string curl just put into the proxytunnel:
>
>12:29:47 - (not logged in) (172.27.1.234)> Connected, sending welcome message...
>12:29:47 - (not logged in) (172.27.1.234)> 220
>12:29:47 - (not logged in) (172.27.1.234)> AUTH SSL
>12:29:47 - (not logged in) (172.27.1.234)> 234 Using authentication type SSL
>12:29:47 - (not logged in) (172.27.1.234)> SSL connection established
>12:29:47 - (not logged in) (172.27.1.234)> USER martijnh
>12:29:47 - (not logged in) (172.27.1.234)> 331 Password required for martijnh
>12:29:47 - (not logged in) (172.27.1.234)> PASS ********
>12:29:47 - martijnh (172.27.1.234)> 230 Logged on
>12:29:47 - martijnh (172.27.1.234)> PBSZ 0
>12:29:47 - martijnh (172.27.1.234)> 200 PBSZ=0
>12:29:47 - martijnh (172.27.1.234)> PROT P
>12:29:47 - martijnh (172.27.1.234)> 200 Protection level set to P
>12:29:47 - martijnh (172.27.1.234)> PWD
>12:29:47 - martijnh (172.27.1.234)> 257 "/" is current directory.
>12:29:47 - martijnh (172.27.1.234)> PASV
>12:29:47 - martijnh (172.27.1.234)> 227 Entering Passive Mode
>(172,27,145,185,4,163)
>12:29:47 - martijnh (172.27.1.234)> CONNECT 172.27.145.185:1187 HTTP/1.0
>12:29:47 - martijnh (172.27.1.234)> 500 Syntax error, command unrecognized.
>12:29:47 - martijnh (172.27.1.234)> Host: 172.27.145.185:1187
>12:29:47 - martijnh (172.27.1.234)> 500 Syntax error, command unrecognized.
>12:29:47 - martijnh (172.27.1.234)> User-Agent: curl/7.15.0
>(hppa2.0w-hp-hpux11.11) libcurl/7.15.0 OpenSSL/0.9.8a zlib/1.2.3
>libidn/0.5.20
>12:29:47 - martijnh (172.27.1.234)> 500 Syntax error, command unrecognized.
>12:29:47 - martijnh (172.27.1.234)> Proxy-Connection: Keep-Alive
>12:29:47 - martijnh (172.27.1.234)> 500 Syntax error, command unrecognized.
>12:29:57 - martijnh (172.27.1.234)> disconnected.
>
>Any ideas?
>
>thanks,
>
>Martijn
>
>
>
Received on 2006-01-05