GP SoftwareTwitter
Opus FAQsManualCommandsObjects

Directory Opus SFTP, ipv6 DNS Directaccess issue - resolved


#1

So my newly purchased option returns

Opening Connection f********.t******.de:22
FD_CONNECT - WSAECONNREFUSED: Connection refused
Cannot Connect to Site.

while Filezilla works flawlessly with the same link/credentials.

I really would prefer a quick fix on this.... or a refund... or ipv6 being implemented.


#2

I can connect to that site fine (I can't login since I have no username/password). At a guess I'd say your firewall or anti-virus may be blocking it.

Opening Connection filexchange.tuev-nord.de:22
Server version: SSH-2.0-9.99 sshlib
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Doing Diffie-Hellman group exchange
Doing Diffie-Hellman key exchange with hash SHA-256
Host key fingerprint is:
ssh-rsa 2048 54:d1:24:97:e8:63:b4:ce:4e:47:1f:ce:f5:de:66:b5
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Pageant is running. Requesting keys.
Pageant has 2 SSH-2 keys
Trying Pageant key #0
Sending Pageant's response
Server refused public-key signature despite accepting key!
Sent password
Password authentication failed
Disconnected: Unable to authenticate
SSH: Unable to authenticate

#3

I fully opened the firewall , both in Windows 10 and in the router, which didn't resolve the issue.
Nor did Filezilla require to perform such configuration action.
The user inlog name is of this format: domain\user

How did you generate/obtain the detailed log? All I get is:

Opening Connection f******.t*****.de:22
FD_CONNECT - WSAECONNREFUSED: Connection refused
Cannot Connect to Site.
Connection closed

Using the debug option is not making any difference.

This is the most detailed log from Filezilla:

15:24:17 Status: Disconnected from server
15:24:17 Trace: CControlSocket::DoClose(66)
15:24:17 Trace: CControlSocket::ResetOperation(66)
15:24:17 Trace: CFileZillaEnginePrivate::ResetOperation(66)
15:24:17 Trace: CControlSocket::DoClose(66)
15:24:17 Trace: CControlSocket::DoClose(66)
15:24:17 Trace: CFileZillaEnginePrivate::ResetOperation(0)
15:24:17 Status: Connecting to f******.t*****.de...
15:24:17 Trace: CControlSocket::SendNextCommand()
15:24:17 Trace: CSftpDeleteOpData::Send() in state 0
15:24:17 Trace: Going to execute C:\Program Files\FileZilla FTP Client\fzsftp.exe
15:24:17 Response: fzSftp started, protocol_version=8
15:24:17 Trace: CSftpDeleteOpData::ParseResponse() in state 0
15:24:17 Trace: CControlSocket::SendNextCommand()
15:24:17 Trace: CSftpDeleteOpData::Send() in state 3
15:24:17 Command: open "domain\user@f******.t*****.de" 22
15:24:17 Trace: Connecting to fd99:5298:9d4b:7777::ab4:30a port 22
15:24:17 Trace: We claim version: SSH-2.0-FileZilla_3.39.0
15:24:17 Trace: Server version: SSH-2.0-9.99 sshlib
15:24:17 Trace: Using SSH protocol version 2
15:24:17 Trace: Doing Diffie-Hellman group exchange
15:24:17 Trace: Doing Diffie-Hellman key exchange with hash SHA-256
15:24:17 Trace: Host key fingerprint is:
15:24:17 Trace: ssh-rsa 2048 54:d1:24:97:e8:63:b4:ce:4e:47:1f:ce:f5:de:66:b5 1QWiL6ZBe1xw8rGF9Z1Hf5tmkPn43BjMXMItLh7vzmY=
15:24:17 Trace: Initialised AES-256 SDCTR client->server encryption
15:24:17 Trace: Initialised HMAC-SHA-256 client->server MAC algorithm
15:24:17 Trace: Initialised AES-256 SDCTR server->client encryption
15:24:17 Trace: Initialised HMAC-SHA-256 server->client MAC algorithm
15:24:17 Command: Pass: ********
15:24:17 Trace: Sent password
15:24:17 Trace: Access granted
15:24:17 Trace: Opening session as main channel
15:24:17 Trace: Opened main channel
15:24:18 Trace: Started a shell/command
15:24:18 Status: Connected to f******.t*****.de.de
15:24:18 Trace: CSftpDeleteOpData::ParseResponse() in state 3
15:24:18 Trace: CControlSocket::ResetOperation(0)
15:24:18 Trace: CSftpDeleteOpData::Reset(0) in state 3
15:24:18 Trace: CFileZillaEnginePrivate::ResetOperation(0)
15:24:18 Status: Retrieving directory listing...
15:24:18 Trace: CControlSocket::SendNextCommand()
15:24:18 Trace: CSftpListOpData::Send() in state 0
15:24:18 Trace: CSftpChangeDirOpData::Send() in state 0
15:24:18 Trace: CSftpChangeDirOpData::Send() in state 1
15:24:18 Command: pwd
15:24:18 Response: Current directory is: "/Home/user"
15:24:18 Trace: CSftpChangeDirOpData::ParseResponse() in state 1
15:24:18 Trace: CControlSocket::ResetOperation(0)
15:24:18 Trace: CSftpChangeDirOpData::Reset(0) in state 1
15:24:18 Trace: CSftpListOpData::SubcommandResult(0) in state 1
15:24:18 Trace: CControlSocket::SendNextCommand()
15:24:18 Trace: CSftpListOpData::Send() in state 2
15:24:18 Trace: CControlSocket::ResetOperation(0)
15:24:18 Trace: CSftpListOpData::Reset(0) in state 2
15:24:18 Status: Directory listing of "/Home/user" successful
15:24:18 Trace: CFileZillaEnginePrivate::ResetOperation(0)

Finally I tested a free SFTp test server (see https://www.sftp.net/public-online-sftp-servers) and this server works in my setup, this is the log from Directory Opus 12.10:

Opening Connection test.rebex.net:22
Server version: SSH-2.0-RebexSSH_1.0.0.0
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Doing Diffie-Hellman group exchange
Doing Diffie-Hellman key exchange with hash SHA-256
Host key fingerprint is:
ssh-rsa 2048 03:61:c4:98:f1:ff:7d:23:97:51:07:13:88:b8:c5:55
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Access granted
Opening session as main channel
Opened main channel
Started a shell/command
SSH: CTS CONNECTED
SSH: Listing Directory
SSH: List complete 5 files.
SSH: Listing Directory
SSH: List complete 3 files.
SSH: Listing Directory
SSH: List complete 21 files.


#4

I was able to connect also, as per below (I'm based in the UK, using DD-WRT router and a Raspberry Pi as a recursive DNS server)

Opening Connection filexchange.tuev-nord.de:22
Server version: SSH-2.0-9.99 sshlib
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Doing Diffie-Hellman group exchange
Doing Diffie-Hellman key exchange with hash SHA-256
Host key fingerprint is:
ssh-rsa 2048 54:d1:24:97:e8:63:b4:ce:4e:47:1f:ce:f5:de:66:b5
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Sent password
Password authentication failed
Disconnected: Unable to authenticate
SSH: Unable to authenticate
Connection closed


#5

So I'm using Windows 10 x64 with Directory Opus 12.10 x64, firewall fully opened.
What's your setup?

Again, my log file is so very empty compared to yours... why????


#6

I'm also running Windows 10 x64 version 1803 (I'm not in any rush to get the latest for obvious reasons). Firewall enabled. DOpus 12.10.2 beta.

Have you tried this thread? FTP Doesn't Work


#7

Yes, Win 10 X64 1803, that's my version too.

Switched to Directory Opus 12.10 beta3.

Still tthe issue remains:

  • Filezilla SFTP works, Dopus SFTP not.
  • Dopus with firewall settings, Filezilla even without!

The source seems to be

  • a specific combination of the Ipswitch Moveit server and Directory Opus client
  • a different handling of the credentials by Filezilla compared to Directory Opus

#8

The reason your log is empty is because something on your system (or in your network) is blocking the connection. It's not able to even connect to the remote server so there's no login attempt shown in the log and credentials don't even come into it.


#9

But I am able to use a SFTP test server. Send a link of snotverkouden SFTP test server and I will post a log.


#10

Try deleting the FTP Addressbook entry for the site, then create a new one for it, making sure to exactly copy the details/settings used in FileZilla.

Make sure there aren't any extra spaces at the start or end of things like the address field.

If that doesn't work, are you using a proxy to connect to things, under either Default Settings > Network or The site bookmark > Network?


#11

Hmmm, Directory Opus works well on my work.
Could this be related to the Direct Access connection that I use at home? I try some things tonight…

--continuation--

By usage of another Win 10x 64 PC behind the same router at home I was able to connect to the server:

Opening Connection f*******.t********.d*:22
Server version: SSH-2.0-9.99 sshlib
Using SSH protocol version 2
We claim version: SSH-2.0-PuTTY_Directory_Opus
Doing Diffie-Hellman group exchange
Doing Diffie-Hellman key exchange with hash SHA-256
Host key fingerprint is:
ssh-rsa 2048 54:d1:24:97:e8:63:b4:ce:4e:47:1f:ce:f5:de:66:b5
Initialised AES-256 SDCTR client->server encryption
Initialised HMAC-SHA-256 client->server MAC algorithm
Initialised zlib (RFC1950) compression
Initialised AES-256 SDCTR server->client encryption
Initialised HMAC-SHA-256 server->client MAC algorithm
Initialised zlib (RFC1950) decompression
Sent password
Access granted
Opening session as main channel
Opened main channel
Started a shell/command
SSH: CTS CONNECTED
SSH: Listing Directory
SSH: List complete 0 files.

So this narrows down to the laptop itself …. like you all predicted.

Now the main question:

Why is Filezilla able to connect and Directory Opus not?

It has something to do with the Direct Access connection my company has preconfigured. Filezilla is ignoring it and Directory Opus not. Is it ipv6 related?


#12

I'm not sure what Direct Access is I'm sorry. Opus does not currently support IPv6 so maybe something on that machine is blocking an IPv4 connection but letting IPv6 through? Although it would be pretty unusual.


#13

DirectAccess (DA) is a Microsoft VPN product: https://en.wikipedia.org/wiki/DirectAccess .
By this I'm able to access the company file-server on a location indepent way without starting VPN connections.

I narrowed the issue down to this:

Filezilla
is able
connect and maintian the connection to all SFTP servers (including this specific one - see above) while the DA connection is up with the IP number and the DNS name.

DirectoryOpus
is able
to connect to most SFTP servers while the DA connection is up
able connect to this specific (in company) SFTP server when the DA connection is down
and even maintain the connection when DA is up (after a login with DA down)
and is able to connect with the IP number.
but is not able
to connect to this specific SFTP server when DA is up based on the DNS name
.

I'm curious for the solution and will ask our IT guys about this.
Could be that Filezilla is preconfigured in our firewall.
Or an DNS issue? Yes
Or still Directory Opus behaving differently compared to Filezilla? Yes, it doesn't support ipv6, Filezilla does

--continuation--

Tracert with DA:

G:>tracert f******.t*****.de.de
Tracing route to f******.t*****.de [fd99:5298:9d4b:7777::ab4:30a]
over a maximum of 30 hops:
1 14 ms 13 ms 13 ms fd99:5298:9d4b:1001:2028:eefe:c397:299b
2 14 ms * 14 ms fd99:5298:9d4b:7777::ab4:30a
3 19 ms 13 ms 20 ms fd99:5298:9d4b:7777::ab4:30a
...

Tracert without DA:

G:>tracert f******.t*****.de
Tracing route to f******.t*****.de [185.39.104.26]
over a maximum of 30 hops:
1 1 ms 1 ms 1 ms fritz.box [192.168.178.1]
2 6 ms 5 ms 23 ms te-1-3.ars01.ams2.network.solcon.net [83.247.49.1]
3 5 ms 4 ms 4 ms asd-s4-rou-1041.NL.eurorings.net [134.222.129.13]
...

I changed the name in FTP Adress Book to the actual IP number (I hope they don't change it too often) and now the connection works while DA is enabled.