Re: FTP server through firewall/router?

From: Chris Wong (chriswong_at_youcantspammedirtbag.com)
Date: 05/22/03 

Date: Thu, 22 May 2003 07:32:29 -0400

Maybe this will help your firewall config. FTP typically uses TCP 21 and 20
on the server, and random ports above TCP 1024 on the client side.

Here's this gist of an FTP connection:

Client connects (from a random port above TCP 1024) to the FTP server (on
TCP 21 at the server)
When client downloads a file, the FTP server (from TCP 20 at the server)
sends the file to the client (on a random port above TCP 1024) 

-- 
Chris Wong
A+, Server+, Network+,
CCNA, CCDA, MCSA, MCSE
"R" <R@R.R> wrote in message
news:m1_ya.48388$Vi5.1400331@news1.calgary.shaw.ca...
> Hey all!
>
> I'd like to configure an FTP server to use to transfer files between home
> and school instead of hauling a bunch of floppies around. The server is
> configured properly and it works when connected directly to the modem, but
> when I port forward through my SMC router it doesn't work.
>
> When connected to the router, using the DOS FTP command, I can connect to
> the server, log in, change modes with the "ASC" and "BIN" commands, but as
> soon as I try to list a directory the connection stops and eventually
times
> out.
>
> I've tried using the FTP server supplied in the Windows IIS as well as
ServU
> FTP server 4.1.
>
> I've tried forwarding a group of ports and configuring the server to allow
> FTP through these ports, and to relay the Shaw IP to clients instead of my
> internal IP. Still no luck.
>
> Does anyone know the correct way to configure an FTP server and router to
> allow FTP connections properly? How about a website or better newsgroup?
>
> Any help is appreciated!
>
>
>

Relevant Pages

  • Re: passiver FTP auf windows server 2003
    ... aber nur bestimte Ports per TCP/IP ... Dies ist dann das Problem beim passiven FTP. ... Ich hoffe Du hast noch sowas wie eine Firewall vor dem Server stehen, ...
    (microsoft.public.de.german.windows.server.setup)
  • Re: AD Replication over SonicWall site-to-site VPN
    ... The MTU can be an Issue: ... Test your MTU from the problem server by pinging the gateway of your router: ... Kerberos authentication service to use TCP instead of UDP. ... there are no explicit prohibitions on any of the ports required. ...
    (microsoft.public.windows.server.active_directory)
  • Re: FTP server behind NAT using Kerio
    ... > I have a Windows 2000 FTP server running behind a Linksys DSL router. ... it is ftp at work. ... > Can I open up a range of outgoing ports for IIS? ...
    (comp.security.firewalls)
  • Re: ServU-deamon trojan warning with McAfee
    ... FTP FTP FTP. ... You did it to yourself by having FTP server on your SBS box without the ... > software didn't pick up this infection altough the DAT file included the ... > document what ports need to be opened and for what reason? ...
    (microsoft.public.backoffice.smallbiz2000)
  • About utility of a firewall with win2000 server
    ... I'm configuring a webserver. ... It will be used exclusively for web services (http and ftp). ... All the ports are opened as soon as an IP adress is affected? ... dans un datacenter. ...
    (microsoft.public.win2000.security)