[zorp-hu] FTPS

Ifj. Darvas Istvan Fireking@DarviNET.Hu
Tue, 27 Aug 2002 15:41:03 +0200 

sziasztok,

Egy feloldalas ftps proxy-t szeretnek csinalni, de nem igazan akar
osszejonni. sajnos elakadtam es nem tudom, hogyan lepjek tiovabb vagy
hol rontom el. Ebben szeretnem a segitsegeteket kerni.

a kovetkezo konf-al probalkozok.

from Zorp.Core import *
from Zorp.Pssl import *
from Zorp.Ftp import *
from Zorp.Router import *

class Inter_FTPS_DMZ(PsslProxy):
        class EmbeddedFtp(FtpProxy):
                pass
        def config(self):
                PsslProxy.config(self)
                self.client_need_ssl = TRUE
                self.client_cert = "/etc/zorp/cert/zapteam.hu.crt"
                self.client_key = "/etc/zorp/cert/zapteam.hu.key"
                self.server_need_ssl = FALSE
                self.stack_proxy = self.EmbeddedFtp


Service("inter_FTPS_dmz", Inter_FTPS_DMZ,
DirectedRouter(SockAddrInet(IP_DMZ,21)))
Listener(SockAddrInet(IP_OUT,990), "inter_FTPS_dmz")

A segitseget elore is koszonom.

sziasztok,


a kovetkeo hibauzenetek jellenek meg:
-------------------------syslog--------------------------

Aug 27 15:52:18 centaury Test[13478]: (Zorp@Centaury/inter_FTPS_dmz):
Connection accepted; client_address='AF_INET(195.38.103.21:61235)'

Aug 27 15:52:18 centaury Test[13478]: (Zorp@Centaury/inter_FTPS_dmz:3):
Starting proxy instance; client_fd='10',
client_address='AF_INET(195.38.103.21:61235)',
client_zone='Zone(internet, 0.0.0.0/0)',
client_local='AF_INET(195.70.36.4:990)'

Aug 27 15:52:18 centaury Test[13478]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Proxy starting;
class='Inter_FTPS_DMZ', module='pssl'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): thread starting;

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): calling __config__() event;

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): calling config() event;

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Attribute changed;
attribute='client_need_ssl', newvalue='1'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Attribute changed;
attribute='client_cert_file', newvalue=''/etc/zorp/cert/zapteam.hu.crt''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Attribute changed;
attribute='client_key_file', newvalue=''/etc/zorp/cert/zapteam.hu.key''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Attribute changed;
attribute='server_need_ssl', newvalue='0'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='client_need_ssl', value='1'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='client_ca_directory', value=''''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='client_verify_depth', value='1'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='server_need_ssl', value='0'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='packet_stats_interval', value='0'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='server_crl_directory', value=''''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='copy_to_client', value='1'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='client_key_file', value=''/etc/zorp/cert/zapteam.hu.key''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='server_key_file', value=''''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='timeout', value='-1'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='server_cert_file', value=''''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='client_verify_type', value='0'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='server_verify_type', value='0'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='client_cert_file', value=''/etc/zorp/cert/zapteam.hu.crt''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='client_crl_directory', value=''''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='copy_to_server', value='1'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='server_ca_directory', value=''''

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Config dump, attribute value;
name='server_verify_depth', value='1'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): calling __startup__() event;

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): calling startUp() event;

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Server connection established;
server_fd='13', server_addr='AF_INET(192.168.1.101:21)',
server_zone='Zone(dmz, 192.168.1.101/32)',
server_local='AF_INET(192.168.1.100:58012)'

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Client needs ssl.

Aug 27 15:52:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Certificate file successfully
loaded; keyfile='/etc/zorp/cert/zapteam.hu.key',
certfile='/etc/zorp/cert/zapteam.hu.crt'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Client side SSL handshake
successful;

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Stacking subproxy;
client='14:15', server='16:17'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Stacking child proxy;
client_fd='15', server_fd='17', class='EmbeddedFtp'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Proxy starting;
class='EmbeddedFtp', module='ftp'

Aug 27 15:53:18 centaury Test[16849]: (Zorp@Centaury/inter_FTPS_dmz:3):
server: Reading channel; fd='13', count='51'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): server downstream: Writing
channel; fd='16', count='51'

Aug 27 15:53:18 centaury Test[16849]: (Zorp@Centaury/inter_FTPS_dmz:3):
client: Channel read failed; attempt='1', error='Success'

Aug 27 15:53:18 centaury Test[16849]: (Zorp@Centaury/inter_FTPS_dmz:3):
client: Reading channel; fd='10', count='0'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): calling __shutdown__() event;

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): calling shutDown() event;

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): calling __destroy__() event;

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Proxy destroy;
class='Inter_FTPS_DMZ', module='pssl'

Aug 27 15:53:18 centaury Test[16849]: (Zorp@Centaury/inter_FTPS_dmz:3):
client: Closing channel; fd='10'

Aug 27 15:53:18 centaury Test[16849]: (Zorp@Centaury/inter_FTPS_dmz:3):
server: Shutdown channel; fd='13', mode='2'

Aug 27 15:53:18 centaury Test[16849]: (Zorp@Centaury/inter_FTPS_dmz:3):
server: Closing channel; fd='13'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): Proxy ending;
class='Inter_FTPS_DMZ', module='pssl'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client downstream: Shutdown
channel; fd='14', mode='2'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client downstream: Closing
channel; fd='14'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): server downstream: Shutdown
channel; fd='16', mode='2'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): server downstream: Closing
channel; fd='16'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): server downstream: accounting
info; duration='0', sent='51', received='0'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client downstream: accounting
info; duration='0', sent='0', received='0'

Aug 27 15:53:18 centaury Test[16849]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): thread exiting;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): thread starting;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): calling __config__() event;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): calling config() event;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Attribute fetched;
attribute='request', value='<Zorp hash object at 80f28c0>'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Attribute fetched;
attribute='response', value='<Zorp Multidimensional hash object at
80f2910>'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Attribute fetched;
attribute='response', value='<Zorp Multidimensional hash object at
80f2910>'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Attribute changed;
attribute='permit_unknown_command', newvalue='1'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='max_hostname_length', value='128'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='target_port_range', value=''21''

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='request', value='<Zorp hash object at 80f28c0>'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='timeout', value='300000'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='permit_unknown_command', value='1'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='transparent_mode', value='1'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='permit_empty_command', value='1'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='max_line_length', value='255'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='max_username_length', value='32'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='max_password_length', value='64'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='response_strip_msg', value='0'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='response', value='<Zorp Multidimensional hash object at 80f2910>'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config dump, attribute value;
name='data_mode', value='0'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Config event done

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): calling __startup__() event;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): calling startUp() event;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Startup event done

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Receiving in server side;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): server: Reading channel; fd='17',
count='51'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Answer fetched; answer='220
ProFTPD 1.2.5rc1 Server (Debian) [zapteam.hu]'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client upstream: Writing channel;
fd='15', count='51'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client upstream: Channel write
failed; attempt='1', error='Broken pipe'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Receiving in client side;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client upstream: Reading channel;
fd='15', count='0'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): calling __shutdown__() event;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): calling shutDown() event;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): calling __destroy__() event;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Proxy destroy;
class='EmbeddedFtp', module='ftp'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client upstream: Shutdown
channel; fd='15', mode='2'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client upstream: Closing channel;
fd='15'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): server: Shutdown channel; fd='17',
mode='2'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): server: Closing channel; fd='17'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Proxy ending; class='EmbeddedFtp',
module='ftp'

Aug 27 15:53:18 centaury Test[17003]: (Zorp@Centaury/inter_FTPS_dmz:3):
client: accounting info; duration='60', sent='0', received='0'

Aug 27 15:53:18 centaury Test[17003]: (Zorp@Centaury/inter_FTPS_dmz:3):
server: accounting info; duration='60', sent='0', received='51'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/pssl): client upstream: accounting info;
duration='0', sent='0', received='0'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): server: accounting info;
duration='0', sent='0', received='51'

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): Ftp Proxy bye;

Aug 27 15:53:18 centaury Test[17003]:
(Zorp@Centaury/inter_FTPS_dmz:3/ftp): thread exiting;