Jump to content
Welcome to our new Citrix community!

Load Balance FTP Servers


Recommended Posts

OK, so I have setup 2 FTP servers and I can connect to both directly from a client.

I have setup a VIP on the NetScaler that is load balancing those FTP servers using this CTX article (https://support.citrix.com/article/CTX205488)

 

I can't get to the FTP servers using the VIP.

MyClient(FileZilla/Internal): 192.168.25.85

FTP01: 192.168.10.20

FTP02: 192.168.10.21

SNIP: 192.168.10.38

VIP: 192.168.10.42

 

Wireshark is showing "19918    17.080386214    192.168.10.42   192.168.25.85    FTP    180    Response: 220 EFT Login - Tuesday, 4/9/2019 2:39:02 PM - Please enter valid credentials to continue"

Then it hits 6 times with something like this "20725    17.381214532    192.168.10.42    192.168.25.85    TCP    180    [TCP Retransmission] 21 → 53222 [PSH, ACK] Seq=1 Ack=1 Win=64240 Len=91"

 

Then it just resets

47187    35.999023796    192.168.10.42    192.168.25.85    TCP    89    21 → 53222 [RST, ACK] Seq=92 Ack=1 Win=9701 Len=0

 

Any ideas?

This is our first load balanced effort in the DMZ so the SNIP was added but not sure if there is something else that also has to be done to properly route or something?

 

Thanks,

Link to comment
Share on other sites

9 minutes ago, Carl Behrent said:

What connection type in FileZilla have you got configured?

 

Use Plain FTP’ for non-encrypted connection and ‘Require explicit FTP over TLS’, ‘Require implicit FTP over TLS’ for encrypted FTP connection.

Actually, I have tried all the options available.

I can connect directly to the FTP servers with "Require explicit FTP over TLS" and "Require implicit FTP over TLS" but using the VIP just doesn't work with any of the options.

 

Thanks!

Link to comment
Share on other sites

Looking at the RST packet  it has win=9701:

 

47187    35.999023796    192.168.10.42    192.168.25.85    TCP    89    21 → 53222 [RST, ACK] Seq=92 Ack=1 Win=9701 Len=0

 

 

According to the article below this means that the server sent a RST and it pass through to the client.

https://www.citrix.com/blogs/2014/05/20/whats-that-netscaler-reset-packet/

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...