FTP on ISA 2004
Posted on 2006-06-26
I'm running ISA 2004 as a proxy server (Single NIC configuration).
HTTP is working fine, but I'm having problems w/ FTP. The filter is enabled. The port #'s are configured as 20 to 21 in my firewall rule. I have the firewall client installed on the PC. The server can access FTP sites as normal, but not the clients.
The clients cannot access any FTP sites using advanced clients (FileZilla, FTP Commander). Using IE, they can access anonymous sites if folder view is disabled. They can also access sites w/ an ID/PW, but only if I embed them into the URL.
From a command prompt, I get: Port 1745 – “Initiated Connection”, followed by another identical entry, but the next one is “Closed Connection”.
From an FTP client in Normal Mode, I get the same.
If I use an FTP client in Passive Mode, I get: Port 1745 – Denied Connection.
I've set up and enabled an 'allow' rule for port 1745 to/from all networks and all users.