Solved

Firewall/FTP 'Connection reset by remote host'

Posted on 2004-04-16
9
1,444 Views
Last Modified: 2013-11-29
Hi am fairly new at this so please bare with me. Currently we are running IIS 5.0 FTP server in our DMZ behind a Nokia Checkpoint firewall. Every once and a while, we have customers complain that they are getting the error 'Connection reset by remote host'. I have run over the server with a fine tooth comb and haven't come up with anything. I have even gone as far as moving the server out of the DMZ into our regular network and having them test it there. When I do this, no error is recieved. Next, I tried putting it behind a PIX firewall that we have in another DMZ and we were able to reproduce the problem. I found an article on Microsoft's Knowledge Base the describes the exact problem, but no real way to fix it. http://support.microsoft.com/default.aspx?scid=kb;en-us;283679. At this point, I am at a loss of what to do. Our WAN administrator says that the firewalls are setting up to allow ports 20 and 21, however, whenever the server is behind a firewall we get the conneciton error. Can anybody offer any suggestions?
0
Comment
Question by:kria
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
9 Comments
 
LVL 2

Expert Comment

by:sudev_shetty
ID: 10847847
u must be knowing about active and passive ftp
if not learn about that and u can solve the problem by your own
let me know if u need any help
0
 

Author Comment

by:kria
ID: 10856572
You are correct. I do know about the difference about passive and active FTP. The main problem I seem to be having is with our firewalls. I have run several tests and nearly proved beyond a shadow of a doubt that the problem is not the server. However, I don't control the firewalls so I was hoping someone could give me something like an article or reference material that I could take to our WAN team.

Thanks for your help!
0
 
LVL 2

Expert Comment

by:sudev_shetty
ID: 10856632
ok if u dont have control on the firewall then enable passive mode in the ftp server and the client it will start working
which ftp server do u have ??
0
Don't Miss ATEN at InfoComm 2017!

Visit booth #2167 to see the  new ATEN VM3200 32 x 32 Modular Matrix Switch. Other highlights include the VE8950 4K HDMI Over IP Extender, VS1912 12-Port DP Video Wall Media Player  and VK2100 ATEN Control System. Register now with Free Pass Code ATEN288!

 

Author Comment

by:kria
ID: 10860720
We currently use IIS 5.0 for our FTP server, however, this problem has been replicated using IPSwitch's WS_FTP server.
0
 
LVL 2

Expert Comment

by:sudev_shetty
ID: 10866069
there is no optinons for active or pasive ftp in iis but u can do it in IPSwitch and WS_FTP server
0
 

Author Comment

by:kria
ID: 10870301
Do you think it would be better to switch to WS_FTP server then? I have no problems with this.
0
 
LVL 2

Accepted Solution

by:
sudev_shetty earned 20 total points
ID: 10875415
insted of ws_ftp switch to ipswitch imail server its a very good server
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question