In preperation for an ICG in our environment we also setup an external FTP Server. However when connecting I keep throwing the error: Session.connect: java.net java.net.SocketException: Connection reset. I can connect to the server via Putty and Filezilla on my workstation, but the session disconnects when trying to putty from the UMS Server itself. Do you think this is a routing issue or some sort of Keep Alive issue that I’ve read about on Putty forums?
The Full Error: Unable to login to host xxx.xxx.xxx.xxx (I extracted my IP info)> as <root> – com.jcraft.jsch.JSchException: Session.connect: <java.net java.net.SocketException: Connection reset
The error from putty:
I see you are using sftp, which is a ssh implementation. Try and use ftps for secure ftp access.
FTPS wants to us port 21. When changing to port 22 it doesn’t work
or 21 for that matter since we block it
You should be able to specify Port 22 as well, but be sure to use passive mode if you are behind a nat.
I’ve tried them all. Nothing works
Even connecting directly via the DMZ IP instead of the public one
i just had another look at your screenshot.
A) when you are saying you want to setup a ftp server for use with icg-connected devices in your dmz, you want not only the external devices to connect to that, but also change the ums-firmware-service to that same server?
B) what protocol / server do you use/ did you install in your DMZ? FTP(S) Server or SFTP (SSH) Server?
I am asking for the protocols, because Putty can only use SSH (and should be able to connect to an SFTP server) and Filezilla can connect to SFTP and FTP(S). SFTP works ootb with Port 22 TCP – SFTP in passive Mode with 21 ootb – both Ports can be changed / NATted.
Let me double check with my Linux guy that setup the machine
I know for your question on bullet A. Its mostly for the external devices, but if I’m able i’ll do internal too since its in our DMZ i should be able to.
I sent bullet b to my linux admins
> I know for your question on bullet A. Its mostly for the external devices, but if I’m able i’ll do internal too since its in our DMZ i should be able to.
never done that myself – but should be doable, i think. But this should only be working for the Firmwareupdates, not for additional files like cerificates, custom partitions, corporate design files – can any <!subteam^S01878DMAE9|@insiders> confirm this?
Confirmed. I’m only referring to firmware updates
I know I can setup two different configurations for endpoints on to where pull updates from. If I have to change the IP or FQDN
Just in case: Custom partitions, CI, etc… can be putted on FTP too but on certificates you would need to script a bit.
the question (also for me) would be – if you change the UMS Firmware location – does it only put the firmwares there automatically – and you would have to put the “other” files there manually?
Yes, exactly. There isn‘t a replication tool inside of UMS, the only exception (even if that doesn‘t fit in your topic), is HA. There files are replicated over servers (ums_filetransfer, no external share).
hmmmm this is actually a really good idea – will borrow this for my new setup. create an internal dns alias to the external url / or loopback rule on firewall and you can use the same update-profile and source internal and external … :thinking_face:
Figured out the issue.
So for testing I was using Root. and it would work on every platform except ums. So We created an actual account and that worked
facepalm
Oh… Well… hope it didn’t hurt 🙂
Its a learning process 🙂
Thats what you get when you got an IT Supervisor doing System admin tasks lol
Is there anything we can do to assist you further?
So I know i put in the admin settings and Im doing a test download now. Does it copy to the UMS Server first, then punt it over to the FTP server?
Its downloading but I don’t see it showing on the FTP Server yet
NVM
got it
I took Copy in the IGEL Console as literal 😛
Continue reading and comment on the thread ‘ I can connect to the IGEL ICG server via Putty and Filezilla – Error: Unable to login to host’. Not a member? Join Here!
Learn more, search the IGEL Knowledge Base
Ask a question or comment on the above message thread?
Join or log in to the IGEL Community to ask us anything and meet other IGEL customers, partners, and EUC enthusiasts.Submit a question, or Join Today!