proftpd warning: unable to determine IP address of 'webserverdell'

11 posts / 0 new
Topic locked
Last post
#1 Fri, 11/22/2013 - 18:41
furius

proftpd warning: unable to determine IP address of 'webserverdell'

hello, i get this error when I tried to start the service through virtualmin, should only restart the service, so a little unsure of what I might have done something wrong

Failed to start service :

  • Starting ftp server proftpd webserverdell proftpd[12087]: mod_tls/2.4.3: compiled using OpenSSL version 'OpenSSL 1.0.0e 6 Sep 2011' headers, but linked to OpenSSL version 'OpenSSL 1.0.1 14 Mar 2012' library webserverdell proftpd[12087]: mod_sftp/0.9.8: compiled using OpenSSL version 'OpenSSL 1.0.0e 6 Sep 2011' headers, but linked to OpenSSL version 'OpenSSL 1.0.1 14 Mar 2012' library webserverdell proftpd[12087]: mod_tls_memcache/0.1: notice: unable to register 'memcache' SSL session cache: Memcache support not enabled webserverdell proftpd[12087]: warning: unable to determine IP address of 'webserverdell' webserverdell proftpd[12087]: error: no valid servers configured webserverdell proftpd[12087]: Fatal: error processing configuration file '/etc/proftpd/proftpd.conf' ...fail!

Pliz help me=)

Sat, 11/23/2013 - 04:04
Locutus

Which Linux distribution are you using? Please post the contents of the file /etc/proftpd/proftpd.conf. And please always enclose shell outputs in [code][/code] tags to preserve linebreaks and monospace font.

Sat, 11/23/2013 - 04:28
furius

Ubuntu Linux 12.04.3

Sat, 11/23/2013 - 09:31
Locutus

Okay, and the second part of my question please?

Sat, 11/23/2013 - 10:46 (Reply to #4)
furius
#
# /etc/proftpd/proftpd.conf -- This is a basic ProFTPD configuration file.
# To really apply changes, reload proftpd after modifications, if
# it runs in daemon mode. It is not required in inetd/xinetd mode.
# 
 
# Includes DSO modules
Include /etc/proftpd/modules.conf
 
# Set off to disable IPv6 support which is annoying on IPv4 only boxes.
UseIPv6             on
# If set on you can experience a longer connection delay in many cases.
IdentLookups            off
 
ServerName          "webserver"
ServerType          standalone
DeferWelcome            off
 
MultilineRFC2228        on
DefaultServer           on
ShowSymlinks            on
 
TimeoutNoTransfer       600
TimeoutStalled          600
TimeoutIdle         1200
 
DisplayLogin                    welcome.msg
DisplayChdir                .message true
ListOptions                 "-l"
 
DenyFilter          \*.*/
 
# Use this to jail all users in their homes 
# DefaultRoot           ~
 
# Users require a valid shell listed in /etc/shells to login.
# Use this directive to release that constrain.
# RequireValidShell     off
 
# Port 21 is the standard FTP port.
Port                21
 
# In some cases you have to specify passive ports range to by-pass
# firewall limitations. Ephemeral ports can be used for that, but
# feel free to use a more narrow range.
# PassivePorts                  49152 65534
 
# If your host was NATted, this option is useful in order to
# allow passive tranfers to work. You have to use your public
# address and opening the passive ports used on your firewall as well.
# MasqueradeAddress     1.2.3.4
 
# This is useful for masquerading address with dynamic IPs:
# refresh any configured MasqueradeAddress directives every 8 hours
<IfModule mod_dynmasq.c>
# DynMasqRefresh 28800
</IfModule>
 
# To prevent DoS attacks, set the maximum number of child processes
# to 30.  If you need to allow more than 30 concurrent connections
# at once, simply increase this value.  Note that this ONLY works
# in standalone mode, in inetd mode you should use an inetd server
# that allows you to limit maximum number of processes per service
# (such as xinetd)
MaxInstances            30
 
# Set the user and group that the server normally runs at.
User                proftpd
Group               nogroup
 
# Umask 022 is a good standard umask to prevent new files and dirs
# (second parm) from being group and world writable.
Umask               022  022
# Normally, we want files to be overwriteable.
AllowOverwrite          on
 
# Uncomment this if you are using NIS or LDAP via NSS to retrieve passwords:
# PersistentPasswd      off
 
# This is required to use both PAM-based authentication and local passwords
# AuthOrder         mod_auth_pam.c* mod_auth_unix.c
 
# Be warned: use of this directive impacts CPU average load!
# Uncomment this if you like to see progress and transfer rate with ftpwho
# in downloads. That is not needed for uploads rates.
#
# UseSendFile           off
 
TransferLog /var/log/proftpd/xferlog
SystemLog   /var/log/proftpd/proftpd.log
 
# Logging onto /var/log/lastlog is enabled but set to off by default
#UseLastlog on
 
# In order to keep log file dates consistent after chroot, use timezone info
# from /etc/localtime.  If this is not set, and proftpd is configured to
# chroot (e.g. DefaultRoot or <Anonymous>), it will use the non-daylight
# savings timezone regardless of whether DST is in effect.
#SetEnv TZ :/etc/localtime
 
<IfModule mod_quotatab.c>
QuotaEngine off
</IfModule>
 
<IfModule mod_ratio.c>
Ratios off
</IfModule>
 
 
# Delay engine reduces impact of the so-called Timing Attack described in
# http://www.securityfocus.com/bid/11430/discuss
# It is on by default. 
<IfModule mod_delay.c>
DelayEngine on
</IfModule>
 
<IfModule mod_ctrls.c>
ControlsEngine        off
ControlsMaxClients    2
ControlsLog           /var/log/proftpd/controls.log
ControlsInterval      5
ControlsSocket        /var/run/proftpd/proftpd.sock
</IfModule>
 
<IfModule mod_ctrls_admin.c>
AdminControlsEngine off
</IfModule>
 
#
# Alternative authentication frameworks
#
#Include /etc/proftpd/ldap.conf
#Include /etc/proftpd/sql.conf
 
#
# This is used for FTPS connections
#
#Include /etc/proftpd/tls.conf
 
#
# Useful to keep VirtualHost/VirtualRoot directives separated
#
#Include /etc/proftpd/virtuals.con
 
# A basic anonymous configuration, no upload directories.
 
# <Anonymous ~ftp>
#   User                ftp
#   Group               nogroup
#   # We want clients to be able to login with "anonymous" as well as "ftp"
#   UserAlias           anonymous ftp
#   # Cosmetic changes, all files belongs to ftp user
#   DirFakeUser on ftp
#   DirFakeGroup on ftp
# 
#   RequireValidShell       off
# 
#   # Limit the maximum number of anonymous logins
#   MaxClients          10
# 
#   # We want 'welcome.msg' displayed at login, and '.message' displayed
#   # in each newly chdired directory.
#   DisplayLogin            welcome.msg
#   DisplayChdir        .message
# 
#   # Limit WRITE everywhere in the anonymous chroot
#   <Directory *>
#     <Limit WRITE>
#       DenyAll
#     </Limit>
#   </Directory>
# 
#   # Uncomment this if you're brave.
#   # <Directory incoming>
#   #   # Umask 022 is a good standard umask to prevent new files and dirs
#   #   # (second parm) from being group and world writable.
#   #   Umask               022  022
#   #            <Limit READ WRITE>
#   #            DenyAll
#   #            </Limit>
#   #            <Limit STOR>
#   #            AllowAll
#   #            </Limit>
#   # </Directory>
# 
# </Anonymous>
 
# Include other custom configuration files
Include /etc/proftpd/conf.d/
<Global>
</Global>
Sat, 11/23/2013 - 11:28
Locutus

Okay, I can't see anything wrong with the config, maybe it's a generic networking issue on your system. What output do you get for these commands?

ifconfig
hostname
hostname -f
cat /etc/hosts
Sat, 11/23/2013 - 11:57 (Reply to #6)
furius

Thank you for your help, this is what i get =)

truevent@webserverdell:~$ ifconfig
eth0      Link encap:Ethernet  HWaddr 00:11:43:e3:30:85
          inet addr:192.168.2.207  Bcast:192.168.2.255  Mask:255.255.255.0
          inet6 addr: fe80::211:43ff:fee3:3085/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:238379 errors:0 dropped:0 overruns:0 frame:0
          TX packets:176953 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:53695549 (53.6 MB)  TX bytes:76149525 (76.1 MB)
 
eth1      Link encap:Ethernet  HWaddr 00:11:43:e3:30:86
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)
 
lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:65536  Metric:1
          RX packets:1799 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1799 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:141764 (141.7 KB)  TX bytes:141764 (141.7 KB)
 
truevent@webserverdell:~$ hostname
webserverdell
truevent@webserverdell:~$ hostname -f
hostname: Name or service not known
truevent@webserverdell:~$ cat /etc/hosts
127.0.0.1       localhost
127.0.1.1       localhost
# The following lines are desirable for IPv6 capable hosts
::1     ip6-localhost ip6-loopback
fe00::0 ip6-localnet
ff00::0 ip6-mcastprefix
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
192.168.2.207   ns1.datafeil.no
truevent@webserverdell:~$
Sat, 11/23/2013 - 12:17
Locutus

Okay, the problem seems to be that your server is behind a NAT router and more notably, does not have an externally resolvable FQDN (fully qualified domain name).

"host" should output something like "myserver", and "hostname -f" should output "mydomain.com". The FQDN would then be "myserver.mydomain.com". That's why ProFTPD is having problems: It cannot determine your external IP and gets no valid FQDN.

It is highly recommended that you get an administrative domain for your server, resolvable independently from your Virtualmin, and give your server a hostname in that domain.

Sat, 11/23/2013 - 16:26
furius

I fixed this by adding(in host) 127.0.1.1 dellwebserver

Tnx for the help=)

But now I've got a new problem when I want to lock user to home folder I get this error message

¨Failed to save FTP directory restrictions : The virtual server's home directory option cannot be selected unless the restriction applies to a specific server, in row 1
Sat, 11/23/2013 - 16:23
Locutus

I still recommend getting an actual domain name and pointing it to your external IP. This workaround with the line you added to the hosts file is not really trustworthy. You'll probably run into more problems with this setup, e.g. when trying to send and receive emails.

Sun, 11/24/2013 - 09:35 (Reply to #10)
furius

I have a domain pointing to my server, is datafeil.no end skienrodekors.no...

:)

Topic locked