Unable to connect to a server from our AIX server via FTP

Bruno2020 · February 20, 2020, 3:00am

Hi guys,
We are trying to connect to an FTP server from our AIX server. Getting the following message

# ftp 164.52.194.12
ftp: connect: A remote host did not respond within the timeout period.
ftp> open 164.52.194.12
ftp: connect: A remote host did not respond within the timeout period.
ftp>

However, we are able to reach out to the same server from our local PC (workstation) via powershell

Windows PowerShell
Copyright (C) 2015 Microsoft Corporation. All rights reserved.

PS C:\Users\LINC> ftp
ftp> open 164.52.194.12
Connected to 164.52.194.12.
220 Microsoft FTP Service
200 OPTS UTF8 command successful - UTF8 encoding now ON.
User (164.52.194.12:(none)):

The ftp services are enabled [uncommented] in the /etc/services file

# grep -i ftp /etc/services
ftp-data                20/tcp          # File Transfer [Default Data]
ftp-data                20/udp          # File Transfer [Default Data]
ftp                             21/tcp          # File Transfer [Control]
ftp                             21/udp          # File Transfer [Control]
ni-ftp                  47/tcp          # NI FTP
ni-ftp                  47/udp          # NI FTP
tftp                    69/udp          # Trivial File Transfer
tftp                    69/tcp          # Trivial File Transfer
sftp                    115/tcp         # Simple File Transfer Protocol
sftp                    115/udp         # Simple File Transfer Protocol
bftp                    152/tcp         # Background File Transfer Program
bftp                    152/udp         # Background File Transfer Program
softpc                  215/tcp         # Insignia Solutions
softpc                  215/udp         # Insignia Solutions
subntbcst_tftp  247/tcp         # SUBNTBCST_TFTP
subntbcst_tftp  247/udp         # SUBNTBCST_TFTP
mftp                    349/tcp         # mftp
mftp                    349/udp         # mftp
ftp-agent                574/tcp                # FTP Software Agent System
ftp-agent                574/udp                # FTP Software Agent System
pftp                    662/tcp         # PFTP
pftp                    662/udp         # PFTP
ftps-data                989/tcp                # ftp protocol, data, over TLS/SSL
ftps-data                989/udp                # ftp protocol, data, over TLS/SSL
ftps                    990/tcp         # ftp protocol, control, over TLS/SSL
ftps                    990/udp         # ftp protocol, control, over TLS/SSL
tftp-mcast              1758/tcp                # tftp-mcast
tftp-mcast              1758/udp                # tftp-mcast
etftp                    1818/tcp               # Enhanced Trivial File Transfer Protocol
etftp                    1818/udp               # Enhanced Trivial File Transfer Protocol
utsftp                  2529/tcp                # UTS FTP
utsftp                  2529/udp                # UTS FTP
aaftp                    2794/tcp               # aaftp
aaftp                    2794/udp               # aaftp
gsiftp                  2811/tcp                # GSI FTP
gsiftp                  2811/udp                # GSI FTP
odette-ftp              3305/tcp                # ODETTE-FTP
odette-ftp              3305/udp                # ODETTE-FTP
tftps                    3713/tcp               # TFTP over TLS
tftps                    3713/udp               # TFTP over TLS
exasoftport1    3920/tcp                # Exasoft IP Port
exasoftport1    3920/udp                # Exasoft IP Port
mftp                    5402/tcp                # MFTP
mftp                    5402/udp                # MFTP
#

The ports are open

# netstat -an|grep LIST|grep 20
tcp        0      0  *.2049                 *.*                    LISTEN
tcp4       0      0  *.3200                 *.*                    LISTEN
# netstat -an|grep LIST|grep 21
tcp        0      0  *.21                   *.*                    LISTEN

Checked the inetd.conf file, ftp isn't commented out

# cat inetd.conf
## @(#)62       1.17.3.4  src/tcpip/etc/inetd.conf, tcpinet, tcpip61N, 1024A_61N 5/27/10 21:56:33
## IBM_PROLOG_BEGIN_TAG
## This is an automatically generated prolog.
##
## tcpip61N src/tcpip/etc/inetd.conf 1.17.3.4
##
## Licensed Materials - Property of IBM
##
## COPYRIGHT International Business Machines Corp. 1993,2010
## All Rights Reserved
##
## US Government Users Restricted Rights - Use, duplication or
## disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
##
## IBM_PROLOG_END_TAG
##
## COMPONENT_NAME: TCPIP inetd.conf
##
## FUNCTIONS:
##
## ORIGINS: 26  27
##
## (C) COPYRIGHT International Business Machines Corp. 1993
## All Rights Reserved
## Licensed Materials - Property of IBM
##
## US Government Users Restricted Rights - Use, duplication or
## disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
##
#######################################################################
##
##                 Internet server configuration database
##
##      Services can be added and deleted by deleting or inserting a
##      comment character (ie. #) at the beginning of a line  If inetd
##      is running under SRC control then the "refresh -s inetd" command
##      needs to be executed for inetd to re-read the inetd.conf file.
##
##      NOTE: The TCP/IP servers do not require SRC and may be started
##      by invoking the service directly (i.e. /etc/inetd). If inetd
##      has been invoked directly, after modifying this file, send a
##      hangup signal, SIGHUP to inetd (ie. kill -1 "pid_of_inetd").
##
##      NOTE: The services with socket type of "sunrpc_tcp" and "sunrpc_udp"
##      require that the portmap daemon be running.
##      Also please use ## to designate comments in this file so that
##      the smit commands can edit this file correctly.
##
##      NOTE: When using IPv6 services, specify "tcp6" or "udp6" for the
##      protocol.  "tcp" and "udp" are interpreted as IPv4.
##
## service  socket  protocol  wait/  user    server    server program
##  name     type             nowait         program     arguments
##
ftp     stream  tcp6    nowait  root    /usr/sbin/ftpd         ftpd -d
telnet  stream  tcp6    nowait  root    /usr/sbin/telnetd      telnetd -a
shell   stream  tcp6    nowait  root    /usr/sbin/rshd         rshd
#kshell  stream  tcp     nowait  root    /usr/sbin/krshd        krshd
login   stream  tcp6    nowait  root    /usr/sbin/rlogind      rlogind
#klogin  stream  tcp     nowait  root    /usr/sbin/krlogind     krlogind
exec    stream  tcp6    nowait  root    /usr/sbin/rexecd       rexecd
#comsat dgram   udp     wait    root    /usr/sbin/comsat       comsat
#uucp   stream  tcp     nowait  root    /usr/sbin/uucpd        uucpd
#bootps dgram   udp     wait    root    /usr/sbin/bootpd       bootpd /etc/bootptab
##
## Finger, systat and netstat give out user information which may be
## valuable to potential "system crackers."  Many sites choose to disable
## some or all of these services to improve security.
##
#finger stream  tcp     nowait  nobody  /usr/sbin/fingerd     fingerd
#systat stream  tcp     nowait  nobody  /usr/bin/ps           ps -ef
#netstat stream tcp     nowait  nobody  /usr/bin/netstat      netstat -f inet
#
#tftp    dgram  udp6    SRC     nobody  /usr/sbin/tftpd         tftpd -n
#talk   dgram   udp     wait    root    /usr/sbin/talkd         talkd
ntalk   dgram   udp     wait    root    /usr/sbin/talkd         talkd
#
# rexd uses very minimal authentication and many sites choose to disable
# this service to improve security.
#
#rquotad  sunrpc_udp     udp     wait    root    /usr/sbin/rpc.rquotad rquotad 100011 1
#rexd    sunrpc_tcp     tcp     wait    root    /usr/sbin/rpc.rexd rexd 100017 1
#rstatd  sunrpc_udp     udp     wait    root    /usr/sbin/rpc.rstatd rstatd 100001 1-3
#rusersd sunrpc_udp     udp     wait    root    /usr/lib/netsvc/rusers/rpc.rusersd rusersd 100002 1-2
#rwalld  sunrpc_udp     udp     wait    root    /usr/lib/netsvc/rwall/rpc.rwalld rwalld 100008 1
#sprayd  sunrpc_udp     udp     wait    root    /usr/lib/netsvc/spray/rpc.sprayd sprayd 100012 1
#pcnfsd  sunrpc_udp     udp     wait    root    /usr/sbin/rpc.pcnfsd pcnfsd 150001 1-2
#echo   stream  tcp     nowait  root    internal
#discard        stream  tcp     nowait  root    internal
#chargen        stream  tcp     nowait  root    internal
daytime stream  tcp     nowait  root    internal
time    stream  tcp     nowait  root    internal
#echo   dgram   udp     wait    root    internal
#discard        dgram   udp     wait    root    internal
#chargen        dgram   udp     wait    root    internal
daytime dgram   udp     wait    root    internal
time    dgram   udp     wait    root    internal
## The following line is for installing over the network.
#instsrv stream tcp     nowait  netinst /u/netinst/bin/instsrv instsrv -r /tmp/netinstalllog /u/netinst/scripts
#imap2  stream  tcp     nowait  root    /usr/sbin/imapd imapd
#pop3   stream  tcp     nowait  root    /usr/sbin/pop3d pop3d
caa_cfg stream  tcp6    nowait  root    /usr/sbin/clusterconf clusterconf >>/var/adm/ras/clusterconf.log 2>&1
dtspcd  stream  tcp     nowait  root    /usr/dt/bin/dtspcd /usr/dt/bin/dtspcd
cmsd    sunrpc_udp      udp     wait    root    /usr/dt/bin/rpc.cmsd cmsd 100068 2-5
ttdbserver      sunrpc_tcp      tcp     wait    root    /usr/dt/bin/rpc.ttdbserver rpc.ttdbserver 100083 1
wsmserver       stream  tcp     nowait  root    /usr/websm/bin/wsmserver wsmserver -start
xmquery dgram   udp     wait    root    /usr/bin/xmtopas xmtopas -p3
#

Upon checking the firewall status , we are getting the following message

# lsfilt -a
Can not open device /dev/ipsec4_filt.

Please suggest what approach to take /checks to do in order to connect via FTP? Any specific firewall related checks we need to do ?

OS configuration:

# oslevel -r
6100-07
# uname -0a
uname: Not a recognized flag: 0
Usage: uname [-snlrvmaxupfFMWS:T:L]
# uname -a
AIX prdsap1 1 6 00F71E294C00
# oslevel -s
6100-07-00-0000
#

Regards,
Bruno

vbe · February 20, 2020, 3:58am

Greetings
Have you checked ftpd is running?
Are you on the same network as the PC or the Windows server? ( switches/routers can be configured to let only some ports open...)
can you ftp a nearby server on same lan, can you from the Windos server ftp your AIX?...

Neo · February 20, 2020, 4:04am

Did you do a

traceroute

(or similar command in AIX) to your ftp server from the host you are having issues with?

Also, did you search the site first before asking this question?

I think this question has been asked and answered many times over the years.

Bruno2020 · February 20, 2020, 4:24am

Yes, the ftpd service is active.

# lssrc -t ftp
Service       Command                  Description              Status
 ftp          /usr/sbin/ftpd           ftpd -d                  active
#

Windows PC and my AIX server are on the same LAN ,let's say LAN1

The server that i'm trying to connect to is on another LAN say LAN 2

I was successfully able to ping the AIX server from my local windows workstation

Here is the o/p:

C:\Users\LINC>ftp
ftp> open 172.16.80.80
Connected to 172.16.80.80.
220 prdsap1 FTP server (Version 4.2 Wed Jun 29 13:24:26 CDT 2011) ready.
500 'OPTS UTF8 ON': command not understood.
User (172.16.80.80:(none)): root
331 Password required for root.
Password:
230-Last unsuccessful login: Wed Jan 22 17:40:48 GMT+05:30 2020 on /dev/pts/0 from 172.16.80.85
230-Last login: Thu Feb 20 14:29:04 GMT+05:30 2020 on ftp from ::ffff:172.16.80.5
230 User root logged in.
ftp> dir
200 PORT command successful.
150 Opening data connection for /bin/ls.
total 18008
-rw-------    1 root     system           74 Feb 06 18:55 .TTauthority
-rw-------    1 root     system          101 Feb 06 18:55 .Xauthority
-rw-r--r--    1 root     system          268 May 05 2019  .desksetdefaults
drwxr-xr-x   11 root     system         4096 Feb 06 18:56 .dt
-rwxr-xr-x    1 root     system         3970 Dec 22 2011  .dtprofile
drwxr-xr-x    3 root     system          256 Dec 22 2011  .java
drwxr-x---    3 root     system          256 Dec 26 2018  .sapinst
drwxr-x---    2 root     system         4096 Sep 05 2017  .sdtgui
-rw-------    1 root     system        10816 Feb 20 13:45 .sh_history
drwx------    2 root     system          256 Dec 23 2011  .topasrecrc
-rw-------    1 root     system          169 Feb 10 11:58 .vi_history
-rw-rw-r--    1 root     system            3 Feb 06 18:55 .wmrc
drwxr-xr-x    2 root     system         4096 Dec 22 2011  TT_DB
-rw-r--r--    1 root     system        13500 Nov 16 18:57 WebSM.pref
-rw-r--r--    1 root     system           84 Jan 17 2012  WebSM.pref_wsmmonitoring.data
drwxr-xr-x    4 root     system          256 Dec 22 2011  admin
drwxr-x---    2 root     audit           256 Sep 15 2011  audit
drwxr-xr-x    3 root     system          256 Jan 24 2013  backup
lrwxrwxrwx    1 bin      bin               8 Dec 22 2011  bin -> /usr/bin
drwxr-xr-x    2 root     system          256 Jan 17 2012  bkp
drwxr-xr-x    2 root     system          256 Jan 17 2012  bkup
-rw-r--r--    1 root     system         6263 Aug 30 2017  bosinst.data
-rw-r--r--    1 root     system          194 Jan 22 12:25 con.sh
-rw-r--r--    1 root     system            0 Dec 22 2011  configassist.log
-rw-r--r--    1 root     system          182 Jan 22 12:21 consumption.sh
-rw-------    1 root     system      3218089 Feb 27 2018  core
drwxrwxrwx   17 root     system       139264 Dec 17 15:51 databackup
drwxrwxr-x    5 root     system         8192 Feb 19 23:55 dev
drwxr-xr-x   16 root     system         4096 Dec 22 2011  esa
drwxr-xr-x   36 root     system         8192 Feb 07 09:45 etc
drwxr-xr-x    7 bin      bin             256 Jan 22 10:48 home
-rw-r--r--    1 root     system        11087 Aug 30 2017  image.data
lrwxrwxrwx    1 bin      bin               8 Dec 22 2011  lib -> /usr/lib
drwx------    2 root     system          256 Dec 22 2011  lost+found
drwxr-xr-x  176 bin      bin            8192 Mar 07 2017  lpp
drwxr-xr-x    2 root     system          256 Jan 12 2017  ltodrv
drwxr-xr-x    2 bin      bin             256 Sep 15 2011  mnt
drwxr-xr-x   20 root     system         4096 Jan 23 2012  opt
drwxr-xr-x   12 orap01   dba            4096 Feb 15 2017  oracle
drwxr-xr-x    4 pconsole pconsole        256 Dec 22 2011  pconsole
dr-xr-xr-x    1 root     system            0 Feb 20 14:32 proc
drwxrwxrwx   13 root     system         4096 Jan 23 2013  sapcd
drwxr-xr-x    3 root     system          256 Dec 23 2011  sapmnt
drwxr-xr-x    3 bin      bin             256 Dec 22 2011  sbin
-rw-r--r--    1 root     system      5493447 Aug 13 2019  smit.log
-rw-r--r--    1 root     system        28230 Aug 13 2019  smit.script
-rw-r--r--    1 root     system        48118 Aug 13 2019  smit.transaction
-rw-r--r--    1 root     system        40871 Apr 04 2012  syslog-tmp
drwxr-xr-x    2 root     system          256 Jan 17 2012  temp1
drwxrwxr-x    2 root     system          256 Dec 22 2011  tftpboot
drwxrwxrwt   59 bin      bin            8192 Feb 20 14:32 tmp
lrwxrwxrwx    1 bin      bin               5 Dec 22 2011  u -> /home
drwxr-xr-x    3 root     system          256 Dec 23 2011  uar
lrwxrwxrwx    1 root     system           21 Dec 22 2011  unix -> /usr/lib/boot/unix_64
drwxr-xr-x   51 bin      bin            4096 Jan 23 2012  usr
drwxr-xr-x   35 bin      bin            4096 Dec 23 2011  var
-rw-r--r--    1 root     system           58 Nov 16 18:57 websm.log
-rw-r--r--    1 root     system         1282 Feb 07 02:15 websm.script
-rw-r--r--    1 root     system        69333 Feb 07 02:15 websm1.transaction
-rw-r--r--    1 root     system         1152 Jan 20 2012  wsmcustomtools.data
226 Transfer complete.
ftp: 4133 bytes received in 0.27Seconds 15.60Kbytes/sec.
ftp>

--- Post updated at 10:24 AM ---

neo:

Did you do a
traceroute
(or similar command in AIX) to your ftp server from the host you are having issues with?

Also, did you search the site first before asking this question?

I think this question has been asked and answered many times over the years.

Hi, i did search this site and went across 10-12 different posts/questions which were of similar nature,still haven't found a solution .

Yes, did do a traceroute from my host to the ftp server :

# traceroute 203.112.144.202
trying to get source for 203.112.144.202
source should be 172.16.80.80
traceroute to 203.112.144.202 (203.112.144.202) from 172.16.80.80 (172.16.80.80), 30 hops max
outgoing MTU = 1500
 1  172.16.80.100 (172.16.80.100)  31 ms  0 ms  0 ms
 2  172.16.80.100 (172.16.80.100)  0 ms !H * *
 3  172.16.80.100 (172.16.80.100)  0 ms !H * *
 4  172.16.80.100 (172.16.80.100)  0 ms !H *  0 ms !H
#

Thing is the infrastructure @ my organization where i joined 2 weeks back is a mess, no proper OS monitoring/maintenance was done for quite sometime . I immediately need to transfer important business docs from my SAP AIX server to ftp server.

Have checked the services file, ports,inetd.conf file. Tried checking the firewall status which led to this

# lsfilt -a
Can not open device /dev/ipsec4_filt.

Would be extremely grateful if you can guide me to look for areas where i can troubleshoot ?

Regards,
Bruno

Neo · February 20, 2020, 4:31am

You need to first try to ping from the host to the ftp server and see if you get a reply.

Did you do that, already?

However, according to your traceroute output, it it looks like you cannot ping, for sure.

Is that right?

Bruno2020 · February 20, 2020, 4:42am

Yes, that's right .
I tried pinging from the host ( which is my SAP server running on AIX) to the FTP server

Result : unsuccessful ,cannot ping

# traceroute 203.112.144.202
trying to get source for 203.112.144.202
source should be 172.16.80.80
traceroute to 203.112.144.202 (203.112.144.202) from 172.16.80.80 (172.16.80.80), 30 hops max
outgoing MTU = 1500
 1  172.16.80.100 (172.16.80.100)  31 ms  0 ms  0 ms
 2  172.16.80.100 (172.16.80.100)  0 ms !H * *
 3  172.16.80.100 (172.16.80.100)  0 ms !H * *
 4  172.16.80.100 (172.16.80.100)  0 ms !H *  0 ms !H
# ping -c 5 203.112.144.202
PING 203.112.144.202: (203.112.144.202): 56 data bytes

--- 203.112.144.202 ping statistics ---
5 packets transmitted, 0 packets received, 100% packet loss
#

But, when i pinged the same FTP server from my local PC/Workstation (in the same LAN as my SAP server) it was successful

Windows PowerShell
Copyright (C) 2015 Microsoft Corporation. All rights reserved.

PS C:\Users\LINC> ftp
ftp> open 164.52.194.12
Connected to 164.52.194.12.
220 Microsoft FTP Service
200 OPTS UTF8 command successful - UTF8 encoding now ON.
User (164.52.194.12:(none)): saplincpen
331 Password required
Password:

Neo · February 20, 2020, 4:44am

To keep the forums high quality for all users, please take the time to format your posts correctly.

First of all, use Code Tags when you post any code or data samples so others can easily read your code. You can easily do this by highlighting your code and then clicking on the # in the editing menu. (You can also type code tags

```text
 and 
```

by hand.)

Please read and follow the rules about code tags and let us know you will abide by the rules:

Second, avoid adding color or different fonts and font size to your posts. Selective use of color to highlight a single word or phrase can be useful at times, but using color, in general, makes the forums harder to read, especially bright colors like red.

Third, be careful when you cut-and-paste, edit any odd characters and make sure all links are working property.

Thank You.

The UNIX and Linux Forums

Bruno2020 · February 20, 2020, 5:03am

Hi ,
Sure, will definitely keep that in mind.
Want to sum up the list of checks and troubleshooting i did for connecting to an FTP server.
We are trying to connect to an FTP server from our AIX server. Getting the following message

# ftp 164.52.194.12
ftp: connect: A remote host did not respond within the timeout period.
ftp> open 164.52.194.12
ftp: connect: A remote host did not respond within the timeout period.
ftp>

However, we are able to reach out to the same server from our local PC (workstation) via powershell

Windows PowerShell
Copyright (C) 2015 Microsoft Corporation. All rights reserved.

PS C:\Users\LINC> ftp
ftp> open 164.52.194.12
Connected to 164.52.194.12.
220 Microsoft FTP Service
200 OPTS UTF8 command successful - UTF8 encoding now ON.
User (164.52.194.12:(none)):

The ftp services are enabled [uncommented] in the /etc/services file

# grep -i ftp /etc/services
ftp-data                20/tcp          # File Transfer [Default Data]
ftp-data                20/udp          # File Transfer [Default Data]
ftp                             21/tcp          # File Transfer [Control]
ftp                             21/udp          # File Transfer [Control]
ni-ftp                  47/tcp          # NI FTP
ni-ftp                  47/udp          # NI FTP
tftp                    69/udp          # Trivial File Transfer
tftp                    69/tcp          # Trivial File Transfer
sftp                    115/tcp         # Simple File Transfer Protocol
sftp                    115/udp         # Simple File Transfer Protocol
bftp                    152/tcp         # Background File Transfer Program
bftp                    152/udp         # Background File Transfer Program
softpc                  215/tcp         # Insignia Solutions
softpc                  215/udp         # Insignia Solutions
subntbcst_tftp  247/tcp         # SUBNTBCST_TFTP
subntbcst_tftp  247/udp         # SUBNTBCST_TFTP
mftp                    349/tcp         # mftp
mftp                    349/udp         # mftp
ftp-agent                574/tcp                # FTP Software Agent System
ftp-agent                574/udp                # FTP Software Agent System
pftp                    662/tcp         # PFTP
pftp                    662/udp         # PFTP
ftps-data                989/tcp                # ftp protocol, data, over TLS/SSL
ftps-data                989/udp                # ftp protocol, data, over TLS/SSL
ftps                    990/tcp         # ftp protocol, control, over TLS/SSL
ftps                    990/udp         # ftp protocol, control, over TLS/SSL
tftp-mcast              1758/tcp                # tftp-mcast
tftp-mcast              1758/udp                # tftp-mcast
etftp                    1818/tcp               # Enhanced Trivial File Transfer Protocol
etftp                    1818/udp               # Enhanced Trivial File Transfer Protocol
utsftp                  2529/tcp                # UTS FTP
utsftp                  2529/udp                # UTS FTP
aaftp                    2794/tcp               # aaftp
aaftp                    2794/udp               # aaftp
gsiftp                  2811/tcp                # GSI FTP
gsiftp                  2811/udp                # GSI FTP
odette-ftp              3305/tcp                # ODETTE-FTP
odette-ftp              3305/udp                # ODETTE-FTP
tftps                    3713/tcp               # TFTP over TLS
tftps                    3713/udp               # TFTP over TLS
exasoftport1    3920/tcp                # Exasoft IP Port
exasoftport1    3920/udp                # Exasoft IP Port
mftp                    5402/tcp                # MFTP
mftp                    5402/udp                # MFTP
#

The ports are open

# netstat -an|grep LIST|grep 20
tcp        0      0  *.2049                 *.*                    LISTEN
tcp4       0      0  *.3200                 *.*                    LISTEN
# netstat -an|grep LIST|grep 21
tcp        0      0  *.21                   *.*                    LISTEN

Checked the inted.conf file, ftp isn't commented out

# cat inetd.conf
## @(#)62       1.17.3.4  src/tcpip/etc/inetd.conf, tcpinet, tcpip61N, 1024A_61N 5/27/10 21:56:33
## IBM_PROLOG_BEGIN_TAG
## This is an automatically generated prolog.
##
## tcpip61N src/tcpip/etc/inetd.conf 1.17.3.4
##
## Licensed Materials - Property of IBM
##
## COPYRIGHT International Business Machines Corp. 1993,2010
## All Rights Reserved
##
## US Government Users Restricted Rights - Use, duplication or
## disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
##
## IBM_PROLOG_END_TAG
##
## COMPONENT_NAME: TCPIP inetd.conf
##
## FUNCTIONS:
##
## ORIGINS: 26  27
##
## (C) COPYRIGHT International Business Machines Corp. 1993
## All Rights Reserved
## Licensed Materials - Property of IBM
##
## US Government Users Restricted Rights - Use, duplication or
## disclosure restricted by GSA ADP Schedule Contract with IBM Corp.
##
#######################################################################
##
##                 Internet server configuration database
##
##      Services can be added and deleted by deleting or inserting a
##      comment character (ie. #) at the beginning of a line  If inetd
##      is running under SRC control then the "refresh -s inetd" command
##      needs to be executed for inetd to re-read the inetd.conf file.
##
##      NOTE: The TCP/IP servers do not require SRC and may be started
##      by invoking the service directly (i.e. /etc/inetd). If inetd
##      has been invoked directly, after modifying this file, send a
##      hangup signal, SIGHUP to inetd (ie. kill -1 "pid_of_inetd").
##
##      NOTE: The services with socket type of "sunrpc_tcp" and "sunrpc_udp"
##      require that the portmap daemon be running.
##      Also please use ## to designate comments in this file so that
##      the smit commands can edit this file correctly.
##
##      NOTE: When using IPv6 services, specify "tcp6" or "udp6" for the
##      protocol.  "tcp" and "udp" are interpreted as IPv4.
##
## service  socket  protocol  wait/  user    server    server program
##  name     type             nowait         program     arguments
##
ftp     stream  tcp6    nowait  root    /usr/sbin/ftpd         ftpd -d
telnet  stream  tcp6    nowait  root    /usr/sbin/telnetd      telnetd -a
shell   stream  tcp6    nowait  root    /usr/sbin/rshd         rshd
#kshell  stream  tcp     nowait  root    /usr/sbin/krshd        krshd
login   stream  tcp6    nowait  root    /usr/sbin/rlogind      rlogind
#klogin  stream  tcp     nowait  root    /usr/sbin/krlogind     krlogind
exec    stream  tcp6    nowait  root    /usr/sbin/rexecd       rexecd
#comsat dgram   udp     wait    root    /usr/sbin/comsat       comsat
#uucp   stream  tcp     nowait  root    /usr/sbin/uucpd        uucpd
#bootps dgram   udp     wait    root    /usr/sbin/bootpd       bootpd /etc/bootptab
##
## Finger, systat and netstat give out user information which may be
## valuable to potential "system crackers."  Many sites choose to disable
## some or all of these services to improve security.
##
#finger stream  tcp     nowait  nobody  /usr/sbin/fingerd     fingerd
#systat stream  tcp     nowait  nobody  /usr/bin/ps           ps -ef
#netstat stream tcp     nowait  nobody  /usr/bin/netstat      netstat -f inet
#
#tftp    dgram  udp6    SRC     nobody  /usr/sbin/tftpd         tftpd -n
#talk   dgram   udp     wait    root    /usr/sbin/talkd         talkd
ntalk   dgram   udp     wait    root    /usr/sbin/talkd         talkd
#
# rexd uses very minimal authentication and many sites choose to disable
# this service to improve security.
#
#rquotad  sunrpc_udp     udp     wait    root    /usr/sbin/rpc.rquotad rquotad 100011 1
#rexd    sunrpc_tcp     tcp     wait    root    /usr/sbin/rpc.rexd rexd 100017 1
#rstatd  sunrpc_udp     udp     wait    root    /usr/sbin/rpc.rstatd rstatd 100001 1-3
#rusersd sunrpc_udp     udp     wait    root    /usr/lib/netsvc/rusers/rpc.rusersd rusersd 100002 1-2
#rwalld  sunrpc_udp     udp     wait    root    /usr/lib/netsvc/rwall/rpc.rwalld rwalld 100008 1
#sprayd  sunrpc_udp     udp     wait    root    /usr/lib/netsvc/spray/rpc.sprayd sprayd 100012 1
#pcnfsd  sunrpc_udp     udp     wait    root    /usr/sbin/rpc.pcnfsd pcnfsd 150001 1-2
#echo   stream  tcp     nowait  root    internal
#discard        stream  tcp     nowait  root    internal
#chargen        stream  tcp     nowait  root    internal
daytime stream  tcp     nowait  root    internal
time    stream  tcp     nowait  root    internal
#echo   dgram   udp     wait    root    internal
#discard        dgram   udp     wait    root    internal
#chargen        dgram   udp     wait    root    internal
daytime dgram   udp     wait    root    internal
time    dgram   udp     wait    root    internal
## The following line is for installing over the network.
#instsrv stream tcp     nowait  netinst /u/netinst/bin/instsrv instsrv -r /tmp/netinstalllog /u/netinst/scripts
#imap2  stream  tcp     nowait  root    /usr/sbin/imapd imapd
#pop3   stream  tcp     nowait  root    /usr/sbin/pop3d pop3d
caa_cfg stream  tcp6    nowait  root    /usr/sbin/clusterconf clusterconf >>/var/adm/ras/clusterconf.log 2>&1
dtspcd  stream  tcp     nowait  root    /usr/dt/bin/dtspcd /usr/dt/bin/dtspcd
cmsd    sunrpc_udp      udp     wait    root    /usr/dt/bin/rpc.cmsd cmsd 100068 2-5
ttdbserver      sunrpc_tcp      tcp     wait    root    /usr/dt/bin/rpc.ttdbserver rpc.ttdbserver 100083 1
wsmserver       stream  tcp     nowait  root    /usr/websm/bin/wsmserver wsmserver -start
xmquery dgram   udp     wait    root    /usr/bin/xmtopas xmtopas -p3
#

Upon checking the firewall status , we are getting the following message

# lsfilt -a
Can not open device /dev/ipsec4_filt.

ftpd status check

# lssrc -t ftp
Service       Command                  Description              Status
 ftp          /usr/sbin/ftpd           ftpd -d                  active
#

I tried pinging from the host ( which is my SAP server running on AIX) to the FTP server

Result : unsuccessful ,cannot ping

# traceroute 203.112.144.202
trying to get source for 203.112.144.202
source should be 172.16.80.80
traceroute to 203.112.144.202 (203.112.144.202) from 172.16.80.80 (172.16.80.80), 30 hops max
outgoing MTU = 1500
 1  172.16.80.100 (172.16.80.100)  31 ms  0 ms  0 ms
 2  172.16.80.100 (172.16.80.100)  0 ms !H * *
 3  172.16.80.100 (172.16.80.100)  0 ms !H * *
 4  172.16.80.100 (172.16.80.100)  0 ms !H *  0 ms !H
# ping -c 5 203.112.144.202
PING 203.112.144.202: (203.112.144.202): 56 data bytes

--- 203.112.144.202 ping statistics ---
5 packets transmitted, 0 packets received, 100% packet loss
#

But, when i pinged the same FTP server from my local PC/Workstation (in the same LAN as my SAP server) it was successful

Windows PowerShell
Copyright (C) 2015 Microsoft Corporation. All rights reserved.
PS C:\Users\LINC> ftp
ftp> open 164.52.194.12
Connected to 164.52.194.12.
220 Microsoft FTP Service
200 OPTS UTF8 command successful - UTF8 encoding now ON.
User (164.52.194.12:(none)): saplincpen
331 Password required
Password:

Windows PC and my AIX server are on the same LAN ,let's say LAN1
The server that i'm trying to connect to is on another LAN say LAN 2
I was successfully able to ping the AIX server from my local windows workstation
Here is the o/p:

C:\Users\LINC>ftp
ftp> open 172.16.80.80
Connected to 172.16.80.80.
220 prdsap1 FTP server (Version 4.2 Wed Jun 29 13:24:26 CDT 2011) ready.
500 'OPTS UTF8 ON': command not understood.
User (172.16.80.80:(none)): root
331 Password required for root.
Password:
230-Last unsuccessful login: Wed Jan 22 17:40:48 GMT+05:30 2020 on /dev/pts/0 from 172.16.80.85
230-Last login: Thu Feb 20 14:29:04 GMT+05:30 2020 on ftp from ::ffff:172.16.80.5
230 User root logged in.
ftp> dir
200 PORT command successful.
150 Opening data connection for /bin/ls.

Please suggest what approach to take /what further checks to do in order to connect via FTP? Any specific firewall related checks we need to do ?

Regards,
Bruno

Neo · February 20, 2020, 5:09am

Looking at all those ports and hosts file is premature (and not helpful).

If you cannot ping, you have a networking issue where your routes are not setup correctly.

There is no need to posts all those files (again).

You need to find out why you cannot ping the server from your device.

Maybe you can draw a picture of your network and upload the image as an attachment so we can take a look?

Bruno2020 · February 20, 2020, 6:26am

Hi,

I'm afraid i do not have the network architecture /diagram with me now as i'm fairly new to this organization and haven't received any sort of handover.

Here are the routes :

# netstat -rn
Routing tables
Destination        Gateway           Flags   Refs     Use  If   Exp  Groups

Route Tree for Protocol Family 2 (Internet):
default            172.16.80.100     UG       24   1065815 en0      -      -
127/8              127.0.0.1         U        18   4972212 lo0      -      -
164.52.194/24      172.16.80.80      UG        0         0 en0      -      -
164.52.194.12      172.16.80.80      UGH       0         8 en0      -      -
172.16.0.0         172.16.80.80      UHSb      0         0 en0      -      -   =>
172.16/16          172.16.80.80      U        39   2224275 en0      -      -
172.16.80.80       127.0.0.1         UGHS     60 510225375 lo0      -      -
172.16.255.255     172.16.80.80      UHSb      2      5108 en0      -      -

Will adding the route via routeadd do any good

route add <destination ip> <source ip>

Any further network related checks i can do ? Anything to do with the firewall ? Any specific firewall related checks i can carry out?

Regards,
Bruno

--- Post updated at 12:26 PM ---

Following are the entries for routing tables :

#  lsattr -El inet0
authm         65536                            Authentication Methods              True
bootup_option no                               Use BSD-style Network Configuration True
gateway                                        Gateway                             True
hostname      prdsap1                          Host Name                           True
rout6                                          IPv6 Route                          True
route         net,-hopcount,0,,0,172.16.80.100 Route                               True

Neo · February 20, 2020, 6:28am

Actually, I did not ask you for a polished, full blown, network diagram.

I asked you:

If you cannot take a piece of paper and a pencil (or your favorite drawing tool) and depict the network you are working, there is little hope to solving a networking / routing issue.

RudiC · February 20, 2020, 6:32am

I'm lost. You

traceroute and ping 203.112.144.202
ftp to 164.52.194.12
ftp to 172.16.80.80 (which, in turn, is taken as source when pinging)

Pls tell us which is the PC, the AIX machine, and the ftp server? Does a route from either to ftp exist?

BTW, the port 20 does not seem to be open, from your netstat output.

Bruno2020 · February 20, 2020, 7:10am

Hi,

Apologies for the confusion. Let me clarify

AIX Server on the local LAN -> Ip address : 172.16.80.80

My workstation on the local LAN -> Ip address : 172.16.80.85

FTP server which is hosted on cloud> Ip address : 164.52.194.12

Connection from my workstation to the FTP server

Windows PowerShell
Copyright (C) 2015 Microsoft Corporation. All rights reserved.

PS C:\Users\LINC> ftp
ftp> open 164.52.194.12
Connected to 164.52.194.12.
220 Microsoft FTP Service
200 OPTS UTF8 command successful - UTF8 encoding now ON.
User (164.52.194.12:(none)): saplincpen
331 Password required
Password:

Status : Successful

Connection from AIX server to FTP server

# ping 164.52.194.12
PING 164.52.194.12: (164.52.194.12): 56 data bytes
203 packets transmitted, 0 packets received, 100% packet loss

# traceroute 164.52.194.12
trying to get source for 164.52.194.12
source should be 172.16.80.80
traceroute to 164.52.194.12 (164.52.194.12) from 172.16.80.80 (172.16.80.80), 30 hops max
outgoing MTU = 1500
 1  * * *
 2  * * *
 3  * * *
 4  * * *
 5  * * *
 6  * * *
 7  * * *
 8  * * *
 9  * * *

Status : Unsuccessful.

Regarding port 20, here is the output

# netstat -an | grep -i listen | grep -E "20"
tcp        0      0  *.2049                 *.*                    LISTEN
tcp4       0      0  *.3200                 *.*                    LISTEN
#

Regards,
Bruno

--- Post updated at 01:10 PM ---

RudiC · February 20, 2020, 7:26am

Looks like there's no route to host, an port 20 is not open.

Neo · February 20, 2020, 7:42am

You should try pinging your own IP address first:

try this:

ping 172.16.80.80

and for fun

ping 127.0.0.1

and to be complete

ping localhost

and post back the results (each in it's on code tag block).

Bruno2020 · February 20, 2020, 8:01am

# ping -c 5 172.16.80.80
PING 172.16.80.80: (172.16.80.80): 56 data bytes
64 bytes from 172.16.80.80: icmp_seq=0 ttl=255 time=0 ms
64 bytes from 172.16.80.80: icmp_seq=1 ttl=255 time=0 ms
64 bytes from 172.16.80.80: icmp_seq=2 ttl=255 time=0 ms
64 bytes from 172.16.80.80: icmp_seq=3 ttl=255 time=0 ms
64 bytes from 172.16.80.80: icmp_seq=4 ttl=255 time=0 ms

--- 172.16.80.80 ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 0/0/0 ms

# ping -c 10 127.0.0.1
PING 127.0.0.1: (127.0.0.1): 56 data bytes
64 bytes from 127.0.0.1: icmp_seq=0 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=1 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=2 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=3 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=4 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=5 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=6 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=7 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=8 ttl=255 time=0 ms
64 bytes from 127.0.0.1: icmp_seq=9 ttl=255 time=0 ms

--- 127.0.0.1 ping statistics ---
10 packets transmitted, 10 packets received, 0% packet loss
round-trip min/avg/max = 0/0/0 ms
#

# ping -c 5 172.16.80.85
PING 172.16.80.85: (172.16.80.85): 56 data bytes
64 bytes from 172.16.80.85: icmp_seq=0 ttl=128 time=0 ms
64 bytes from 172.16.80.85: icmp_seq=1 ttl=128 time=0 ms
64 bytes from 172.16.80.85: icmp_seq=2 ttl=128 time=0 ms
64 bytes from 172.16.80.85: icmp_seq=3 ttl=128 time=0 ms
64 bytes from 172.16.80.85: icmp_seq=4 ttl=128 time=0 ms

--- 172.16.80.85 ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 0/0/0 ms
#

--- Post updated at 02:01 PM ---

Can you tell me how to open port 20? Do i need to modify anything in the /etc/services file ?

Neo · February 20, 2020, 8:25am

Bruno,

You do not need to worry about port 20 (yet). That line of thinking is leading you off track (sorry Rudi) because you need to establish you have a working route (network connection) between your private IP address space and the Internet. What you are describing (so far) is just a simple network configuration issue.

You cannot ping your ftp host. ping does not use ports. The ping protocol works at the transport layer.

So, if you cannot ping, you can do nothing (unless ping is blocked by a firewall rule, but then you have other problems, and you are not ready for that yet) .... on any of the ports from 1 to over 65,000 (65,535 TCP and 65,535 UDP ports, to be exact), open or not, LOL. You can open port 20 as wide as a truck and you will still not be able to connect to it; because you have described basic networking issues. You cannot ping at the transport layer (yet).

Since you can ping your own interface (that is good news, at least) , you need to try to ping the next hop on your network (normally your router, but you have not provided a diagram. Please upload a sketch as I mentioned, using the attachment feature of the site, not an external img hosting link).

Do you know what the IP address of your router is?

Also, can you run the arp command on your computer?

Try:

$ arp -a

That is the next step.... you need to see if you can or cannot connect (ping) the next hop in your network.

You are getting "ahead of yourself" if you try to work / troubleshoot at the TCP or UDP layer before you make sure you are good to go lower in the stack (at the transport layer).

That is why we need to establish you can ping first.

Understand yet? To troubleshoot networking issues, it is best to start at the bottom and work your way up the protocol stack (not the other way around). If you learn to troubleshoot like this, you will find it much easier and much faster to solve problems, I promise.

Bruno2020 · February 21, 2020, 1:21am

Hi,

Yes, i was able to locate the gateway on my network.

# lsconf | grep -i gateway
        Gateway: 172.16.80.100
# ping -c 5 172.16.80.100
PING 172.16.80.100: (172.16.80.100): 56 data bytes
64 bytes from 172.16.80.100: icmp_seq=0 ttl=255 time=0 ms
64 bytes from 172.16.80.100: icmp_seq=1 ttl=255 time=0 ms
64 bytes from 172.16.80.100: icmp_seq=2 ttl=255 time=0 ms
64 bytes from 172.16.80.100: icmp_seq=3 ttl=255 time=0 ms
64 bytes from 172.16.80.100: icmp_seq=4 ttl=255 time=0 ms

--- 172.16.80.100 ping statistics ---
5 packets transmitted, 5 packets received, 0% packet loss
round-trip min/avg/max = 0/0/0 ms

# arp -a
  ? (172.16.80.232) at 3c:a0:67:a7:0:c3 [ethernet] stored in bucket 4

  ? (172.16.80.85) at 0:d8:61:65:e2:63 [ethernet] stored in bucket 6

  ? (172.16.80.92) at 74:e6:e2:1a:59:2 [ethernet] stored in bucket 13

  ? (172.16.80.100) at 58:8d:9:3f:17:31 [ethernet] stored in bucket 21

  ? (172.16.80.109) at 4c:cc:6a:fa:35:6 [ethernet] stored in bucket 30

  ? (172.16.80.2) at 0:1c:c0:d0:90:8e [ethernet] stored in bucket 72

  ? (172.16.80.3) at 0:e0:4c:3a:e1:34 [ethernet] stored in bucket 73

  ? (172.16.80.4) at 30:9c:23:44:3a:9 [ethernet] stored in bucket 74

  ? (172.16.80.5) at 4c:cc:6a:fa:37:84 [ethernet] stored in bucket 75

  ? (172.16.80.8) at 0:27:e:0:a6:ed [ethernet] stored in bucket 78

  ? (172.16.80.17) at c4:65:16:1d:93:e8 [ethernet] stored in bucket 87

  ? (172.16.80.34) at 48:5b:39:c0:b3:52 [ethernet] stored in bucket 104

  ? (172.16.80.35) at 0:e0:4c:df:38:95 [ethernet] stored in bucket 105

  ? (172.16.80.36) at 0:e0:4c:73:1:d1 [ethernet] stored in bucket 106

  ? (172.16.80.37) at 3c:52:82:9:8f:e [ethernet] stored in bucket 107

  ? (172.16.80.43) at 0:27:e:0:12:27 [ethernet] stored in bucket 113

  ? (172.16.80.49) at 0:e0:4c:64:12:86 [ethernet] stored in bucket 119

  ? (172.16.80.52) at 0:e0:4c:3a:5d:62 [ethernet] stored in bucket 122

  ? (172.16.80.54) at 0:e3:74:27:60:c9 [ethernet] stored in bucket 124

  ? (172.16.80.55) at 0:1a:4d:1c:35:6 [ethernet] stored in bucket 125

  ? (172.16.80.57) at 48:5b:39:c0:b3:50 [ethernet] stored in bucket 127

  ? (172.16.80.59) at 40:8d:5c:67:5a:c8 [ethernet] stored in bucket 129

  ? (172.16.80.62) at 74:d4:35:bd:c:51 [ethernet] stored in bucket 132

  ? (172.16.80.63) at 40:8d:5c:3c:e3:88 [ethernet] stored in bucket 133

  ? (172.16.80.64) at 48:5b:39:c0:b3:77 [ethernet] stored in bucket 134

  ? (172.16.80.65) at 0:60:67:70:f7:c8 [ethernet] stored in bucket 135

  ? (172.16.80.67) at 0:16:76:87:2:67 [ethernet] stored in bucket 137

  ? (172.16.80.69) at 0:e0:4c:17:2:5a [ethernet] stored in bucket 139

  ? (172.16.80.77) at 0:24:1d:5f:3b:1f [ethernet] stored in bucket 147

bucket:    0     contains:    0 entries
bucket:    1     contains:    0 entries
bucket:    2     contains:    0 entries
bucket:    3     contains:    0 entries
bucket:    4     contains:    1 entries
bucket:    5     contains:    0 entries
bucket:    6     contains:    1 entries
bucket:    7     contains:    0 entries
bucket:    8     contains:    0 entries
bucket:    9     contains:    0 entries
bucket:   10     contains:    0 entries
bucket:   11     contains:    0 entries
bucket:   12     contains:    0 entries
bucket:   13     contains:    1 entries
bucket:   14     contains:    0 entries
bucket:   15     contains:    0 entries
bucket:   16     contains:    0 entries
bucket:   17     contains:    0 entries
bucket:   18     contains:    0 entries
bucket:   19     contains:    0 entries
bucket:   20     contains:    0 entries
bucket:   21     contains:    1 entries
bucket:   22     contains:    0 entries
bucket:   23     contains:    0 entries
bucket:   24     contains:    0 entries
bucket:   25     contains:    0 entries
bucket:   26     contains:    0 entries
bucket:   27     contains:    0 entries
bucket:   28     contains:    0 entries
bucket:   29     contains:    0 entries
bucket:   30     contains:    1 entries
bucket:   31     contains:    0 entries
bucket:   32     contains:    0 entries
bucket:   33     contains:    0 entries
bucket:   34     contains:    0 entries
bucket:   35     contains:    0 entries
bucket:   36     contains:    0 entries
bucket:   37     contains:    0 entries
bucket:   38     contains:    0 entries
bucket:   39     contains:    0 entries
bucket:   40     contains:    0 entries
bucket:   41     contains:    0 entries
bucket:   42     contains:    0 entries
bucket:   43     contains:    0 entries
bucket:   44     contains:    0 entries
bucket:   45     contains:    0 entries
bucket:   46     contains:    0 entries
bucket:   47     contains:    0 entries
bucket:   48     contains:    0 entries
bucket:   49     contains:    0 entries
bucket:   50     contains:    0 entries
bucket:   51     contains:    0 entries
bucket:   52     contains:    0 entries
bucket:   53     contains:    0 entries
bucket:   54     contains:    0 entries
bucket:   55     contains:    0 entries
bucket:   56     contains:    0 entries
bucket:   57     contains:    0 entries
bucket:   58     contains:    0 entries
bucket:   59     contains:    0 entries
bucket:   60     contains:    0 entries
bucket:   61     contains:    0 entries
bucket:   62     contains:    0 entries
bucket:   63     contains:    0 entries
bucket:   64     contains:    0 entries
bucket:   65     contains:    0 entries
bucket:   66     contains:    0 entries
bucket:   67     contains:    0 entries
bucket:   68     contains:    0 entries
bucket:   69     contains:    0 entries
bucket:   70     contains:    0 entries
bucket:   71     contains:    0 entries
bucket:   72     contains:    1 entries
bucket:   73     contains:    1 entries
bucket:   74     contains:    1 entries
bucket:   75     contains:    1 entries
bucket:   76     contains:    0 entries
bucket:   77     contains:    0 entries
bucket:   78     contains:    1 entries
bucket:   79     contains:    0 entries
bucket:   80     contains:    0 entries
bucket:   81     contains:    0 entries
bucket:   82     contains:    0 entries
bucket:   83     contains:    0 entries
bucket:   84     contains:    0 entries
bucket:   85     contains:    0 entries
bucket:   86     contains:    0 entries
bucket:   87     contains:    1 entries
bucket:   88     contains:    0 entries
bucket:   89     contains:    0 entries
bucket:   90     contains:    0 entries
bucket:   91     contains:    0 entries
bucket:   92     contains:    0 entries
bucket:   93     contains:    0 entries
bucket:   94     contains:    0 entries
bucket:   95     contains:    0 entries
bucket:   96     contains:    0 entries
bucket:   97     contains:    0 entries
bucket:   98     contains:    0 entries
bucket:   99     contains:    0 entries
bucket:  100     contains:    0 entries
bucket:  101     contains:    0 entries
bucket:  102     contains:    0 entries
bucket:  103     contains:    0 entries
bucket:  104     contains:    1 entries
bucket:  105     contains:    1 entries
bucket:  106     contains:    1 entries
bucket:  107     contains:    1 entries
bucket:  108     contains:    0 entries
bucket:  109     contains:    0 entries
bucket:  110     contains:    0 entries
bucket:  111     contains:    0 entries
bucket:  112     contains:    0 entries
bucket:  113     contains:    1 entries
bucket:  114     contains:    0 entries
bucket:  115     contains:    0 entries
bucket:  116     contains:    0 entries
bucket:  117     contains:    0 entries
bucket:  118     contains:    0 entries
bucket:  119     contains:    1 entries
bucket:  120     contains:    0 entries
bucket:  121     contains:    0 entries
bucket:  122     contains:    1 entries
bucket:  123     contains:    0 entries
bucket:  124     contains:    1 entries
bucket:  125     contains:    1 entries
bucket:  126     contains:    0 entries
bucket:  127     contains:    1 entries
bucket:  128     contains:    0 entries
bucket:  129     contains:    1 entries
bucket:  130     contains:    0 entries
bucket:  131     contains:    0 entries
bucket:  132     contains:    1 entries
bucket:  133     contains:    1 entries
bucket:  134     contains:    1 entries
bucket:  135     contains:    1 entries
bucket:  136     contains:    0 entries
bucket:  137     contains:    1 entries
bucket:  138     contains:    0 entries
bucket:  139     contains:    1 entries
bucket:  140     contains:    0 entries
bucket:  141     contains:    0 entries
bucket:  142     contains:    0 entries
bucket:  143     contains:    0 entries
bucket:  144     contains:    0 entries
bucket:  145     contains:    0 entries
bucket:  146     contains:    0 entries
bucket:  147     contains:    1 entries
bucket:  148     contains:    0 entries

There are 29 entries in the arp table.

#

Regards,
Bruno

Neo · February 21, 2020, 2:17am

Great. OK.... let's check your subnetwork and routing.

Can you issue the this command on AIX?

route -n

or

route -vn

and also, for completeness:

ifconfig -a

Thanks.

Bruno2020 · February 21, 2020, 2:30am

# ifconfig -a
en0: flags=1e080863,c0<UP,BROADCAST,NOTRAILERS,RUNNING,SIMPLEX,MULTICAST,GROUPRT,64BIT,CHECKSUM_OFFLOAD(ACTIVE),LARGESEN
D,CHAIN>
        inet 172.16.80.80 netmask 0xffff0000 broadcast 172.16.255.255
         tcp_sendspace 131072 tcp_recvspace 65536 rfc1323 0
lo0: flags=e08084b,c0<UP,BROADCAST,LOOPBACK,RUNNING,SIMPLEX,MULTICAST,GROUPRT,64BIT,LARGESEND,CHAIN>
        inet 127.0.0.1 netmask 0xff000000 broadcast 127.255.255.255
        inet6 ::1%1/0
         tcp_sendspace 131072 tcp_recvspace 131072 rfc1323 1
#

The route command with the given options somehow doesn't work.

# route -n
usage: route [ -nqCvf ]  cmd [[ -<qualifers> ] args ]
# route -vn
usage: route [ -nqCvf ]  cmd [[ -<qualifers> ] args ]
# route -nqCvf
# route
usage: route [ -nqCvf ]  cmd [[ -<qualifers> ] args ]

Here is the routing table info :

# netstat -rn
Routing tables
Destination        Gateway           Flags   Refs     Use  If   Exp  Groups

Route Tree for Protocol Family 2 (Internet):
default            172.16.80.100     UG       12     32395 en0      -      -
127/8              127.0.0.1         U        15    122582 lo0      -      -
172.16.0.0         172.16.80.80      UHSb      0         0 en0      -      -   =>
172.16/16          172.16.80.80      U        31     64804 en0      -      -
172.16.80.80       127.0.0.1         UGHS     54   9690815 lo0      -      -
172.16.255.255     172.16.80.80      UHSb      2        64 en0      -      -