Active FTP behind router on a Cable Modem Connection

I have a custom Visual Basic app that runs some automated procedures over FTP.  I have recently moved office locations and now the application no longer works.  

CuteFTP works in Passive mode.  But IE and the command prompt both do not work in active mode.   I understand how the modes work and I know that Active mode requires the server to open connections to the client and that a client firewall could interfere with this.  

I suspect that because active FTP is not working, the custom app runs over active FTP.  Can anyone tell me how I can get around this?  Would an FTP proxy work?  How do I set this up?  Or would it be possible to configure my router to accept these connections?  Recoding the app is the last thing that I want to do, so please assume that it has to run active FTP.  Im just looking for a way to make this work.

Thanks,

Joe
deltreesolutionsAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

savoneCommented:
This will most def help you, it helped me! :)

http://slacksite.com/other/ftp.html
deltreesolutionsAuthor Commented:
Thanks savone.  I have already seen it.  It explains that in active mode the server needs to connect to ports on the client directly.  Is there a port range that I can have forwarded to an internal IP?  I need to know how to configure this or bypass it altogether.
publicCommented:
TO bypass the firewall put the server in the default server IP, or DMZ as Linksys calls it.
You completely expose the server to attacks.
Otherwise read the firewall manual and forward a range of high ports to the sevrer.
Become a CompTIA Certified Healthcare IT Tech

This course will help prep you to earn the CompTIA Healthcare IT Technician certification showing that you have the knowledge and skills needed to succeed in installing, managing, and troubleshooting IT systems in medical and clinical settings.

savoneCommented:
Agreed public... the doc I posted will show you what ports to forward.
deltreesolutionsAuthor Commented:
I should have been more clear.  The client and client app is behind the router, so my personal computer sits behind this router.  The app needs to connect to a typical ftp server that I have no control over.

According to that article, Active FTP requires that the server be able to open client ports, which client routers will often block.  I assume that this is the problem I am having.  Public's advice may work though if I open up a DMZ to the internal client machine.
publicCommented:
>Active FTP requires that the server be able to open client ports, which client routers will often block.  I assume that this is the problem I am having
yes. Using a DMZ you forward all ports. Otherwise on the client router forward a high range like 1000-20000 for at least some protection.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
deltreesolutionsAuthor Commented:
I essentially found this answer on my own.  Googling this search term: active connection NAT router ftp

My client fixed the problem by port forwarding port 21 to his PC behind the NAT router.  This doesn't make any sense to me and I suspect that the router was already capable of supporting Active FTP connections.  I did notice in new Netgear routers that they have a section called port triggering, which will open up external ports only when a certain internal port has been triggered.  This is perfect.

I am giving the points to public b/c that answer is true and will have the same effect as the port triggering.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Broadband

From novice to tech pro — start learning today.