GL-AR300M - Access FTP from local Network

Hello,
I have a GL-AR300M (V4.3.17) to which a SAT receiver is connected. I would now like to edit my channel list and wanted to connect via FTP.
I have set up a port forwarder under Firewall with port 21.
Although I can establish a connection to 21 from my laptop, no data is transferred, e.g. directory content.
I then added port 20 for the FTP data transfer, but that doesn't work either.
Unfortunately I only have Basic knowledge and hope that someone can help me. I have looked at this via Lucie (Traffic Rules), but I do not fully understand these settings.

To summarise briefly, I want to connect my SAT receiver from my local laptop behind a GL-AR300M via FTP.

I hope someone can help me.
Many thanks in advance

Are you talking about an engima2 sat receiver?

You need to be doing your FTP settings on your SAT Receiver not on the glinet router, those settings refer to the FTP client on the router which isn't what you need. Delete your FTP port forwarding settings on the router as it's not needed.

The SAT Receiver has it's own FTP server and that's what you want to connect to / amend to make work.

Assuming you are running OpenATV on enigma2 you need to do the following

Menu > Setup > Network > Network Services. Find FTP and make sure it's enabled, green button to save. Go up one to "Password settings" (under Network Services menu) and make sure to add a password, this is what's needed to allow FTP access once enabled.

Now download a FTP client, something like FileZilla and head over to the IP address of your enigma2 receiver and login with your creds. Username is: root

Allow the cert / key and it should connect. Also ensure you enabled openwebif and "enable access from VPNs"

I would also statically reserve your SAT Receiver IP inside your glient GUI so that your IP never changes otherwise you might wonder why your FTP client fails to connect at a later date.

I just hope you are refering to an engima2 receiver, let us know.

OK, sorry, I must have given you too less information. The SAT receiver is in a different network behind the GL router. If I connect directly to the same network with my laptop, the FTP connection works. So the Setup on the Receiver is ok.
SAT receiver (192.168.10.10) / GL router (192.168.10.1) / laptop (192.168.5.5)

Port forwarding
192.168.10.10
Port 80
to
192.168.10.1
Port 22280

I can then access the WebGUI of the receiver with 192.168.10.1 port 22280.

However, this does not work with FTP.

Theres no need to portforward the sat receivers ports for port 80.

The portforward you have made can be removed and you would still be able to hit the webgui of the receiver but just without the port number as they're different addressable IPs so there's no port 80 conflict between router or SAT receiver. With the portforward removed you would just hit http://192.168.10.10 and your SAT Receiver gui should load. You would portforward if the same IP was trying to load two services on the same port however your glient router IP and sat receiver are two separate devices so both can have port 80 running on them inside a LAN.

Where is your laptop pulling it's DHCP from? Why are your devices on different subnets? How are they connected, are you trying to access your SAT Receiver via the WAN interface hence you made a port 80 redirect to the GUI of the SAT Receiver?

The problem is that the FTP server configuration.

First, you need to port forward 21 and use passive mode for your ftp server. Pls post screenshot of the port forward so that we know you have done this correctly.

Second, the ftp server is picky. The ftp server may not respond correctly with the IP addresses. FTP server is stupid and may not deal with NAT correctly.
Can you check this thread? I am not sure if ftp passthrough is needed because it is for vpn client, not server.

Also check this post about ftp behind a firewall.

Here is all what I did to make vsftpd work behind NAT of GL.iNet router.

  1. Set up vsftpd.

I belive your ftp serve may have similar settings.

#Initialized
background=YES
listen=YES
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
check_shell=NO
session_support=NO

no_anon_password=YES
anon_mkdir_write_enable=YES
anon_other_write_enable=YES
allow_writeable_chroot=YES
anon_upload_enable=YES
pasv_enable=YES #enable passive mode
pasv_min_port=10090 #passive mode data port min
pasv_max_port=10090 #passive mode data port max
pasv_address=192.168.50.139 #This is the public IP of the ftp server, i.e. the WAN IP of the GL.iNet router which your ftp server is connected to

Check the last 4 lines.

  1. For port forward, I forward both 21 and the data port

Thank you very much, with the pasv_min/max-port and pasv-address and Port-Forwarding it is working.