Re: FTP Server Question

From: Fastfwd (fastwfd01@hotmail.com)
Date: 02/10/03

Next message: Phillip Pi: "Re: Norton P Firewall 3 and CuteFTP Pro 3.0"
Previous message: Chuck Croll: "Re: Disk Activity at Startup"
In reply to: those who know me have no need of my name: "Re: FTP Server Question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Fastfwd" <fastwfd01@hotmail.com>
Date: Mon, 10 Feb 2003 12:50:37 -0600

"those who know me have no need of my name" <not-a-real-address@usa.net>
wrote in message news:m1u1fc10a4.gnus@usa.net...
> in comp.security.firewalls i read:
>
> >I'm trying out the new Bullet Proof ftp server that allows passive
> >connections and resolves external ip from within a firewall. I don't
> >understand why the server doesn't work when I disable UDP on the ports
that
> >I have forwarded through my firewall. I did have hostname lookup
> >enabled........is that what is requiring UDP? I've seen information
saying
> >that you need both tcp and udp enabled and I've seen information that FTP
> >only uses TCP.
>
> hostname lookup requires dns service, which requires udp and tcp to
> destination port 53 from whichever local port(s) your resolver uses,
> typically either 53 or one or more ephemerals. ftp uses tcp destination
> port 21 toward the server from any unreserved source port (i.e., >1023),
> and an arbitrary ephemeral port towards the client for each data
connection.
>
Thanks for the response. I'm using non-standard ports with my server. 504
for communication and 50000-50100 for data as specified by pasv/passive
mode. My problem is that if I cut UDP access on the router for the ports I
have forwarded the server will not function. If I allow UDP access on those
ports it does work. I don't have a machine on the outside so I haven't
tested it with one or the other without UDP because I'm dependant on outside
users to test the passive mode. Does the DNS lookup use one of the provided
ports (504, 50000-50100) when 53 is not available?

Next message: Phillip Pi: "Re: Norton P Firewall 3 and CuteFTP Pro 3.0"
Previous message: Chuck Croll: "Re: Disk Activity at Startup"
In reply to: those who know me have no need of my name: "Re: FTP Server Question"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: passiver FTP auf windows server 2003
... aber nur bestimte Ports per TCP/IP ... Dies ist dann das Problem beim passiven FTP. ... Ich hoffe Du hast noch sowas wie eine Firewall vor dem Server stehen, ...
(microsoft.public.de.german.windows.server.setup)
Re: FTP server behind NAT using Kerio
... > I have a Windows 2000 FTP server running behind a Linksys DSL router. ... it is ftp at work. ... > Can I open up a range of outgoing ports for IIS? ...
(comp.security.firewalls)
About utility of a firewall with win2000 server
... I'm configuring a webserver. ... It will be used exclusively for web services (http and ftp). ... All the ports are opened as soon as an IP adress is affected? ... dans un datacenter. ...
(microsoft.public.win2000.security)
Re: ServU-deamon trojan warning with McAfee
... FTP FTP FTP. ... You did it to yourself by having FTP server on your SBS box without the ... > software didn't pick up this infection altough the DAT file included the ... > document what ports need to be opened and for what reason? ...
(microsoft.public.backoffice.smallbiz2000)
Sip Softphone hinter ISA wie die Ports freigeben
... Ich möchte Softphone X-Lite auf den Clients hinter dem ISA Server betreiben, ... habe alle Ports etc frei gegeben -ohne Erfolg, ... UDP 8000, plus eins für jede weitere OnLine Verindung zb. 8001, 8002 etz ... UDP oder TCP 3478, 3479 ...
(microsoft.public.de.german.isaserver)