Advertisement

10.10.2007 at 01:57PM PDT, ID: 22885428
[x]
Attachment Details
[x]
The Solution Rating System

With so many solutions, how can you tell which solutions are most likely to help you and which ones are not? To provide you with a tool to use, we rate our solutions based on various elements that most accurately determine if a solution is a quality solution. To explain what factors affect the solution rating, here are the elements we take into consideration when formulating our solution rating.

  • The Grade of the Solution
  • The Zone Rank of the Expert Providing the Solution
  • The Number of Author and Expert Comments
  • The Number of Experts Contributing
  • The Feedback of the Community

Your Input Matters
Because of the way the system is set up, the most important variable in this equation is you. As a member of Experts Exchange, you are able to cast your vote on the quality of the solutions in regard to how complete, accurate, helpful and easy to understand each solution is. When you provide your feedback, each rating is adjusted accordingly. So, if you see a solution that has a poor rating that you think is a good solution, let us know by rating it. As you do, the rating will be adjusted and will become more accurate for other members of our site.

If you have any suggestions that you would like to make for our rating system, please ask a question in the Suggestions Zone of Community Support.

Thank you!
7.0

Limit FTP to VPN Connection?

Zone: Microsoft IIS Web Server
Tags: vpn, ftp, connection
Hello and thank you for reading my question.

Is it possible to limit FTP access to a VPN connection? If so, how? (I am not bad at programming but am weak with networking, so I would appreciate a response geared toward that lower level).

Details:

IPSEC with Microsoft VPN Connection
Windows 2003 Server
VPN already configured and working with an IP range of xxx.xxx.xx.145 - xxx.xxx.xx.150

Thank you very much.

Fritz the Blank
Start your free trial to view this solution
Question Stats
Zone: Internet
Question Asked By: fritz_the_blank
Solution Provided By: bkellyboulderit
Participating Experts: 1
Solution Grade: A
Views: 4
Translate:
Loading Advertisement...
10.10.2007 at 02:21PM PDT, ID: 20052486
bkellyboulderit:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.11.2007 at 09:40AM PDT, ID: 20058803
fritz_the_blank:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.11.2007 at 12:00PM PDT, ID: 20059977
bkellyboulderit:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.12.2007 at 08:25AM PDT, ID: 20066303
fritz_the_blank:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.12.2007 at 08:36AM PDT, ID: 20066454
bkellyboulderit:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.12.2007 at 07:06PM PDT, ID: 20069998
fritz_the_blank:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.13.2007 at 06:58AM PDT, ID: 20070998
bkellyboulderit:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.13.2007 at 11:11AM PDT, ID: 20071591
fritz_the_blank:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
10.13.2007 at 11:59AM PDT, ID: 20071691
fritz_the_blank:

All comments and solutions are available to Premium Service Members only.

Start your 7 day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
Loading Advertisement...
Microsoft
  • Internet Protocols
  • Applications
  • Development
  • OS
  • Hardware
  • Windows Security
Apple
  • Operating Systems
  • Hardware
  • Programming
  • Networking
  • Software
Internet
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Spy / Ad Blockers
  • Web Browsers
  • New Net Users
  • Web Development
  • Chat / IM
  • Anti Spam
  • Web Servers
  • Anti-Virus
  • Email Clients
Gamers
  • Tips
  • Online / MMORPG
  • Puzzle
  • Emulators
  • Action / Adventure
  • Role Playing
  • Consoles
  • Game Programming
  • Strategy
  • Sports
  • Misc
  • Computer Games
Digital Living
  • Hardware
  • New Net Users
  • New Users
  • Software
  • Digital Music
  • Gaming World
  • Home Security
  • Apple
  • Networking Hardware
Virus & Spyware
  • Vulnerabilities
  • IDS
  • Encryption
  • Anti-Virus
  • Operating Systems Security
  • Software Firewalls
  • WebApplications
  • Cell Phones
  • Operating Systems
  • Internet
  • Hardware Firewalls
Hardware
  • Handhelds / PDAs
  • Displays / Monitors
  • Components
  • Networking Hardware
  • Peripherals
  • Laptops/Notebooks
  • Storage
  • Servers
  • Desktops
  • New Users
  • Misc
  • Apple
Software
  • System Utilities
  • Industry Specific
  • Network Management
  • Photos / Graphics
  • Page Layout
  • VMWare
  • Misc
  • Web Development
  • OS
  • CYGWIN
  • Voice Recognition
  • Message Queue
  • Quality Assurance
  • Security
  • Firewalls
  • MultiMedia Applications
  • Development
  • Database
  • Office / Productivity
  • Business Management
  • OS/2 Apps
  • Server Software
  • Internet / Email
ITPro
  • OS
  • Storage
  • Encryption
  • Operating Systems Security
  • Apple Hardware
  • Laptops & Notebooks
  • Servers
  • Networking Hardware
  • Peripherals
  • Devices
  • Displays / Monitors
  • WebTrends / Stats
  • Search Engines
  • Firewalls
  • WebApplications
  • IDS
  • Vulnerabilities
  • Email Clients
  • File Sharing
  • Spy / Ad Blockers
  • Web Browsers
  • Web Servers
  • Networking
  • Anti-Virus
  • Chat / IM
  • Anti Spam
Developer
  • Web Servers
  • Web Browsers
  • Game Programming
  • Dev Tools
  • Industry Specific
  • Office / Productivity
  • Database
  • CYGWIN
  • Web Development
  • Search Engines
  • File Sharing
  • WebTrends / Stats
  • Programming
  • Content Management
  • Application Servers
  • Protocols
Storage
  • Removable Backup Media
  • Storage Technology
  • Servers
  • Grid
  • Remote Access
  • Backup / Restore
  • Misc
  • Hard Drives
OS
  • Miscellaneous
  • Security
  • Development
  • Linux
  • VMWare
  • MainFrame OS
  • Unix
  • Apple
  • OS / 2
  • AS / 400
  • BeOS
  • Microsoft
  • VMS / OpenVMS
Database
  • Oracle
  • Miscellaneous
  • MySQL
  • Software
  • Sybase
  • Contact Management
  • PostgreSQL
  • Data Manipulation
  • Clarion
  • InterSystems Cache
  • Siebel
  • MUMPS
  • OLAP
  • SQLBase
  • SAS
  • GIS & GPS
  • 4GL
  • Berkeley DB
  • DB2
  • Informix
  • Interbase / Firebird
  • FoxPro
  • Reporting
  • LDAP
  • Filemaker Pro
  • MS SQL Server
  • dBase
  • MS Access
Security
  • Misc
  • Web Browsers
  • Software Firewalls
  • Operating Systems Security
  • File Sharing
  • Spy / Ad Blockers
  • Vulnerabilities
  • WebApplications
  • IDS
  • Anti-Virus
  • Encryption
  • Anti Spam
  • Email Clients
  • VPN
  • Chat / IM
Programming
  • Editors IDEs
  • Installation
  • Handhelds / PDAs
  • Multimedia Programming
  • System / Kernel
  • Algorithms
  • Game
  • Signal Processing
  • Project Management
  • Open Source
  • Database
  • Misc
  • Languages
  • Processor Platforms
  • Theory
Web Development
  • Scripting
  • Blogs
  • Web Servers
  • Software
  • Search Engines
  • Web Graphics
  • Images
  • Internet Marketing
  • Images and Photos
  • Components
  • Document Imaging
  • Web Languages/Standards
  • Illustration
  • WebApplications
  • Fonts
  • WebTrends / Stats
  • Authoring
  • Digital Camera Software
  • Miscellaneous
Networking
  • Protocols
  • Apple Networking
  • Network Management
  • Message Queue
  • Application Servers
  • Content Management
  • File Servers
  • Email Servers
  • Misc
  • Java Editors & IDEs
  • Wireless
  • Networking Hardware
  • Backup / Restore
  • System Utilities
  • ISPs & Hosting
  • Web Servers
  • Storage Technology
  • Removable Backup Media
  • Servers
  • Broadband
  • Grid
  • OS / 2
  • Novell Netware
  • Unix Networking
  • Windows Networking
  • Security
  • Telecommunications
  • Operating Systems
  • Linux Networking
Other
  • Community Advisor
  • Lounge
  • Community Support
  • New Net Users
  • Philosophy / Religion
  • Math / Science
  • Miscellaneous
  • URLs
  • Expert Lounge
  • Politics
  • Puzzles / Riddles
Community Support
  • Suggestions
  • New to EE
  • New Topics
  • Community Advisor
  • CleanUp
  • Announcements
  • General
  • Feedback
  • Input
  • EE Bugs
 
10.10.2007 at 02:21PM PDT, ID: 20052486
bkellyboulderit:
In IIS you can restrict the allowable ip's for the ftp site to the internal network only, which would include the RRAS users.
Rt click ftp site, >properties, >directory security > denied access except the following....add in ap range
or allow except the following would deny a range of computers....
 
10.11.2007 at 09:40AM PDT, ID: 20058803
fritz_the_blank:
Thank you for your post. I had already configured FTP that way, but it appears that when I connect with CuteFTP Pro, it uses my DHCP IP rather than the IP from the VPN. So, I ake it that I need to modify settings somehow on the FTP client to use the VPN connection?

Thanks again,

FtB
 
10.11.2007 at 12:00PM PDT, ID: 20059977
bkellyboulderit:
Include your private network range in the FTP  properties and see if it still barfs.
 
10.12.2007 at 08:25AM PDT, ID: 20066303
fritz_the_blank:
If I open the range to include my IP as indicated through ipconfig everything works fine. I am just not sure how to force my FTP client to connect via the VPN.

FtB
 
10.12.2007 at 08:36AM PDT, ID: 20066454
bkellyboulderit:
Are you telling the FTP client to use the servers internal IP address? Maybe I haven't enough coffee yet.
 
10.12.2007 at 07:06PM PDT, ID: 20069998
fritz_the_blank:
That is what I would like to do, but am unsure how. I have a range of 5 IP addresses assigned to VPN connections. I have limited the FTP settings in IIS to allow only those 5 addresses. Now what I need to figure out is how to configure the FTP client to use the VPN IP.

Does that make sense or am I thinking about this the in the wrong way?

Thanks again,

FtB
 
10.13.2007 at 06:58AM PDT, ID: 20070998
bkellyboulderit:
Let me try again.

Internal NAT'd Server address: x.x.x.100  (like 192.168.1.100)
vpn clients x.x.x.145-150 (like 192.168.1.145 through 150)

allowed ip's for FTP 127.0.0.1, x.x.x.100, x.x.x.145-150

ftp software points to x.x.x.100

doesn't work?

It should! Is this diagram correct?  You can ftp at the command prompt ok?
Accepted Solution
 
10.13.2007 at 11:11AM PDT, ID: 20071591
fritz_the_blank:
What you describe about the NAT and the VPN clients is exactly what is in place. For the IIS FTP setting, I have allowed the range 145 through 150 but no the server address. Is that the problem? Let me test that. As an aside, the .100 address is not part of the VPN address pool. Does that mean that the FTP transfer is not happening over VPN?

FtB
 
10.13.2007 at 11:59AM PDT, ID: 20071691
fritz_the_blank:
Okay, including the ip address of the ftp site in the allowed ip list fixed the problem, so all is well.

Thank you very much for your help,

FtB
 
 
bkellyboulderit
10.13.2007 at 12:34PM PDT, ID: 20071767
Non-technical answer is: your attaching to the server itself, so you also need to include itself.

Yeah! I'm glad it works. :-)
 
 
fritz_the_blank
10.13.2007 at 05:34PM PDT, ID: 20072449
When I examined the sessions under FTP, they indicated the IP address of the server, so your your non-technical answer confirms what I observed.

Thank you once again,

FTB
 
 
 
20080236-EE-VQP-29 / EE_QW_EXPERT_20070906