Windows Server 2003 with a default FTP Site installed; all clients using Windows 2000 or Windows XP SP2:
If I make an exception for Ports 21 and 20 in Windows Firewall, clients can connect using "active FTP".
If I disable Windows Firewall on the server, clients can connect with passive and active ftp enabled.
My boss wants the firewall enabled, of course, but he also wants the clients to connect using Passive mode since this is the default setting when you install windows. He uses the example that passive FTP can connect to ftp://Microsoft.com
no problem. What is Microsoft doing that I am not?
I know from reading an earlier post that you cannot put a range of ports as an exception in Windows Firewall. Could I tell Server 2003 to use a small range of ports for passive FTP, say 1024-1029, then I could easlily make indivdual exceptions for each port?
If it's possible what are the steps? (I am a newbie so feel free to talk down to me with as much detail as possible)