?
Solved

Firewall/FTP 'Connection reset by remote host'

Posted on 2004-04-16
9
Medium Priority
?
1,472 Views
Last Modified: 2013-11-29
Hi am fairly new at this so please bare with me. Currently we are running IIS 5.0 FTP server in our DMZ behind a Nokia Checkpoint firewall. Every once and a while, we have customers complain that they are getting the error 'Connection reset by remote host'. I have run over the server with a fine tooth comb and haven't come up with anything. I have even gone as far as moving the server out of the DMZ into our regular network and having them test it there. When I do this, no error is recieved. Next, I tried putting it behind a PIX firewall that we have in another DMZ and we were able to reproduce the problem. I found an article on Microsoft's Knowledge Base the describes the exact problem, but no real way to fix it. http://support.microsoft.com/default.aspx?scid=kb;en-us;283679. At this point, I am at a loss of what to do. Our WAN administrator says that the firewalls are setting up to allow ports 20 and 21, however, whenever the server is behind a firewall we get the conneciton error. Can anybody offer any suggestions?
0
Comment
Question by:kria
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
9 Comments
 
LVL 2

Expert Comment

by:sudev_shetty
ID: 10847847
u must be knowing about active and passive ftp
if not learn about that and u can solve the problem by your own
let me know if u need any help
0
 

Author Comment

by:kria
ID: 10856572
You are correct. I do know about the difference about passive and active FTP. The main problem I seem to be having is with our firewalls. I have run several tests and nearly proved beyond a shadow of a doubt that the problem is not the server. However, I don't control the firewalls so I was hoping someone could give me something like an article or reference material that I could take to our WAN team.

Thanks for your help!
0
 
LVL 2

Expert Comment

by:sudev_shetty
ID: 10856632
ok if u dont have control on the firewall then enable passive mode in the ftp server and the client it will start working
which ftp server do u have ??
0
Don't Cry: How Liquid Web is Ensuring Security

WannaCry is just the start. Read how Liquid Web is protecting itself and its customers against new threats.

 

Author Comment

by:kria
ID: 10860720
We currently use IIS 5.0 for our FTP server, however, this problem has been replicated using IPSwitch's WS_FTP server.
0
 
LVL 2

Expert Comment

by:sudev_shetty
ID: 10866069
there is no optinons for active or pasive ftp in iis but u can do it in IPSwitch and WS_FTP server
0
 

Author Comment

by:kria
ID: 10870301
Do you think it would be better to switch to WS_FTP server then? I have no problems with this.
0
 
LVL 2

Accepted Solution

by:
sudev_shetty earned 80 total points
ID: 10875415
insted of ws_ftp switch to ipswitch imail server its a very good server
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
This program is used to assist in finding and resolving common problems with wireless connections.
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Suggested Courses
Course of the Month10 days, 22 hours left to enroll

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question