Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

How to make ftp server work in PASV and PORT mode ?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 General ] >> Server Publishing >> How to make ftp server work in PASV and PORT mode ? Page: [1]
Login
Message << Older Topic   Newer Topic >>
How to make ftp server work in PASV and PORT mode ? - 16.Feb.2004 4:14:00 AM   
zhangmeibo

 

Posts: 87
Joined: 11.Feb.2004
From: China
Status: offline 		hi , all

Now I has a FTP publish problem :

My ftp server use PASV mode , if I publish my ftp server use normally ftp server policy , the ftp server only allow PORT mode connection.So I had created a new ftp server policy :

name : serv_u ftp connection
primary connection : tcp inbound 21 , tcp inbound 45000-45020 ( my ftp server use PASV port)
second.connection : none

(In ISA 2000 , tcp inbound 45000 - 45020 should define in secondary connection , but in ISA 2004 , it only can define in Primary connection, or else it can't work ,it it also very strange "[Confused]" )

This policy can make my ftp server work in PASV mode normally.But a new problem is generate : ftp server can't work in port mode . "[Frown]"

When ftp server work in PORT mode , it will use tcp 21 inbound to accept ftp connection , and use tcp 20 outbound or tcp random port to data transmission . Because primary connection can't define outbound port(because it already defines inbound port) , so I define port in secondary connection : tcp outbound 20-20 , 1025-65535 , but port mode also can't work .

Strangely , if I don't define secondary connections , and checkmark the "FTP Access Filter" , PORT mode can work , But ftp server only can work in PORT mode , and ISA deny all write behavior(I think this behavior because default ftp policy is "Read-only").

Now I have to use PASV mode , does anybody has good suggestion? "[Smile]"
Post #: 1
RE: How to make ftp server work in PASV and PORT mode ? - 17.Feb.2004 4:52:00 AM   
tshinder

 

Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Meibo,

I only needed to create an FTP Server Publishing Rule and can use PASV FTP to access the IIS FTP server:
PASS (hidden)
230-This is ISA2004 FTP
230 Anonymous user logged in.
PWD
257 "/" is current directory.
SYST
215 Windows_NT
Host type (S): Microsoft NT
PASV
227 Entering Passive Mode (192,168,1,70,4,49)
connecting to 192.168.1.70:1073
- -
connecting to 192.168.1.70:1073
Connected to 192.168.1.70 port 1073
LIST
125 Data connection already open; Transfer starting.
Received 513 bytes in 0.1 secs, (50.00 Kbps), transfer succeeded
226 Transfer complete.
receiving stuff.txt as stuff.txt (1 of 1)
Saving restart info for Ipswitch - stuff.txt
TYPE I
200 Type set to I.
PASV
227 Entering Passive Mode (192,168,1,70,4,50)
connecting to 192.168.1.70:1074
- -
connecting to 192.168.1.70:1074
Connected to 192.168.1.70 port 1074
RETR stuff.txt
125 Data connection already open; Transfer starting.
Received 0 bytes in 0.1 secs, (0.00 bps), transfer succeeded
226 Transfer complete.
sending certnew.p7b as certnew.p7b (1 of 1)
PASV
227 Entering Passive Mode (192,168,1,70,4,51)
connecting to 192.168.1.70:1075
- -
connecting to 192.168.1.70:1075
Connected to 192.168.1.70 port 1075
STOR certnew.p7b
125 Data connection already open; Transfer starting.
Transmitted 1134 bytes in 0.1 secs, (110.00 Kbps), transfer succeeded
226 Transfer complete.
MDTM 20040211201227 certnew.p7b
550 20040211201227 certnew.p7b: The system cannot find the file specified.
PWD
257 "/" is current directory.
TYPE A
200 Type set to A.
PASV

227 Entering Passive Mode (192,168,1,70,4,52)
connecting to 192.168.1.70:1076
- -
connecting to 192.168.1.70:1076
Connected to 192.168.1.70 port 1076
LIST
125 Data connection already open; Transfer starting.
Received 565 bytes in 0.1 secs, (50.00 Kbps), transfer succeeded
226 Transfer complete.
==========================
I configured the FTP policy for upload and download. Then I configured it for download only. It worked both ways.

Maybe a problem with Serv-U?

HTH,
Tom

(in reply to zhangmeibo)
Post #: 2
RE: How to make ftp server work in PASV and PORT mode ? - 17.Feb.2004 6:34:00 AM   
zhangmeibo

 

Posts: 87
Joined: 11.Feb.2004
From: China
Status: offline 		Oh , Tom

Very thinks for your tip !
I have reinstall serv_u ftp server and now it can work in both PORT and PASV mode !
Very thanks for your guidance ! From this , I had studied that in the analysis , we should take everything into considerition , but not just one aspect . [Smile]

Because my serv_u ftp server always works well in the past , so I don't doubt it . [Big Grin]

[ February 17, 2004, 06:35 AM: Message edited by: meibo ]

(in reply to zhangmeibo)
Post #: 3
RE: How to make ftp server work in PASV and PORT mode ? - 17.Feb.2004 12:28:00 PM   
tshinder

 

Posts: 47490
Joined: 10.Jan.2001
From: Texas
Status: offline 		Hi Meibo,

Great! Good to hear you got it working and thanks for the follow up!

[Big Grin]

Tom

(in reply to zhangmeibo)
Post #: 4
RE: How to make ftp server work in PASV and PORT mode ? - 18.Feb.2004 2:27:00 AM   
zhangmeibo

 

Posts: 87
Joined: 11.Feb.2004
From: China
Status: offline 		hi , Tom

Someting is magic , very thanks for your help .

(in reply to zhangmeibo)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 General ] >> Server Publishing >> How to make ftp server work in PASV and PORT mode ? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts