SSL/TLS error when downloading

Report client bugs
Locked
maxshop
Posts: 3
Joined: Mon Mar 24, 2014 4:43 am

SSL/TLS error when downloading

Post by maxshop »

I posted this question/issue in the General forum, but saw a lot of spam. So hopefully someone will see this and reply.

I am using CoreFTP LE ver. 2.2; Build: 1792. I have setup a Site as follows:

Connection: AUTH SSL
Port: 21; Mode: Passive
SSL Options checked: SSL Listings, SSL Transfer, Clear (CCC), OpenSSL

Under the Site Advanced Settings, I have the "CA Key" pointing to a certificate. All other options/flags are default.

To upload files to the FTP site, I use:

corecmd.exe -s -O -A -delsrc -site SITE -u d:temp\OUT*.INT -p /OUTBOUND/ -log d:\temp\ftp.log

This works perfectly fine, and multiple OUT*.INT files are uploaded successfully.

To download files from the FTP site, I use:

corecmd.exe -s -O -A -site SITE -d /INBOUND/* -p d:\temp\ -log ftp.log

However, this fails (see log below). The 1st file is downloaded successfully, but the others are not. I have tried different options such as using Windows SSL instead of Open SSL, and checking "Allow session reuse", but none of that works. It either fails or CoreFTP crashes. I have also tried disabling the Firewall.

Any ideas why the upload works fine, but not the download?

Thanks


Resolving abc.xyz.com...
Connect socket #440 to xxx.xx.xxx.xx, port 21...220 CONNECT:Enterprise Gateway 2.0.02. S11 FTP Server ready... 23:29:49 03-23-2014
AUTH SSL
234 AUTH: command accepted. Securing command channel ...
CA certificate loaded...TLSv1, cipher TLSv1/SSLv3 (RC4-MD5) - 128 bitUSER USERNAME
331 Password required for USERNAME.
PASS **********
230 User USERNAME logged in. Session Id: 59717.
PBSZ 0
200 PBSZ command accepted.
PROT P
200 PROT command accepted. Data transactions will be secured.
CCC
200 CCC command channel is no longer secured.
CWD /INBOUND/
250 CWD Directory changed. Current working Mailbox is "INBOUND".
PASV
227 PASV Entering passive mode (xxx,xx,xxx,xx,203,244).
LIST
Connect socket #456 to xxx.xx.xxx.xx, port 52212...TLSv1, cipher TLSv1/SSLv3 (RC4-MD5) - 128 bit150 Opening data connection.
226 Transfer complete. 288 Bytes sent.
PWD
257 "INBOUND" is the current working Mailbox ID.
CWD /INBOUND/
250 CWD Directory changed. Current working Mailbox is "INBOUND".
PASV
227 PASV Entering passive mode (xxx,xx,xxx,xx,203,245).
LIST
Connect socket #468 to xxx.xx.xxx.xx, port 52213...TLSv1, cipher TLSv1/SSLv3 (RC4-MD5) - 128 bit150 Opening data connection.
226 Transfer complete. 288 Bytes sent.
PASV
227 PASV Entering passive mode (xxx,xx,xxx,xx,203,246).
LIST
Connect socket #468 to xxx.xx.xxx.xx, port 52214...TLSv1, cipher TLSv1/SSLv3 (RC4-MD5) - 128 bit150 Opening data connection.
226 Transfer complete. 288 Bytes sent.
TYPE A
200 TYPE Command okay.
PASV
227 PASV Entering passive mode (xxx,xx,xxx,xx,203,247).
RETR 973867600010001V
Connect socket #468 to xxx.xx.xxx.xx, port 52215...TLSv1, cipher TLSv1/SSLv3 (RC4-MD5) - 128 bit150 Opening data connection.
973867600010001V - 9622 bytes transferred in 1 seconds
226 Transfer complete. 9.52 KBytes sent.
MDTM 973867600010001V
500 MDTM command not understood.
TYPE A
200 TYPE Command okay.
PASV
227 PASV Entering passive mode (xxx,xx,xxx,xx,203,249).
RETR 974268600010001V
Connect socket #460 to xxx.xx.xxx.xx, port 52217...SSL/TLS error - 0, SSL error - 1, error:00000001:lib(0):func(0):reason(1)
Winsock error 10060 (A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond.
)
974268600010001V - 0 bytes transferred in 1 minutes, 11 seconds
SSL failedResolving abc.xyz.com...
Connect socket #460 to xxx.xx.xxx.xx, port 21...220 CONNECT:Enterprise Gateway 2.0.02. S11 FTP Server ready... 23:31:09 03-23-2014
AUTH SSL
234 AUTH: command accepted. Securing command channel ...
CA certificate loaded...TLSv1, cipher TLSv1/SSLv3 (RC4-MD5) - 128 bitUSER USERNAME
331 Password required for USERNAME.
PASS **********
230 User USERNAME logged in. Session Id: 59733.
.
.
.
Last edited by maxshop on Wed Apr 02, 2014 8:54 pm, edited 1 time in total.
Top
ForumAdmin
Site Admin
Posts: 987
Joined: Mon Mar 24, 2003 4:37 am

Post by ForumAdmin »

Install the 1795 over your existing build, see if you get the same results.
Top
maxshop
Posts: 3
Joined: Mon Mar 24, 2014 4:43 am

Post by maxshop »

[quote="ForumAdmin"]Install the 1795 over your existing build, see if you get the same results.[/quote]

I did and am getting the same results. Thanks
Top
ForumAdmin
Site Admin
Posts: 987
Joined: Mon Mar 24, 2003 4:37 am

Post by ForumAdmin »

Do you have the "Connect:Enterprise" server type selected in adv -> general -> server type...
Top
maxshop
Posts: 3
Joined: Mon Mar 24, 2014 4:43 am

Post by maxshop »

[quote="ForumAdmin"]Do you have the "Connect:Enterprise" server type selected in adv -> general -> server type...[/quote]

Mine is set to Auto, and it won't let me change it. Looks like the "Connect:Enterprise" option is only available in the Pro version :-(.

Thanks
Top
wlr@genoagroup.com
Posts: 1
Joined: Sat Apr 12, 2014 4:37 pm

Smae issue

Post by wlr@genoagroup.com »

I am having the same issue. Any help would be great...
Top
ForumAdmin
Site Admin
Posts: 987
Joined: Mon Mar 24, 2003 4:37 am

Post by ForumAdmin »

Fixes in build 1796 and greater should address these issues.
Top
Locked

Return to “Client - Issues”