Solved

Windows Firewall preventing clients using Passive FTP from connecting

Posted on 2006-11-16
1
411 Views
Last Modified: 2010-05-19
Windows Server 2003 with a default FTP Site installed; all clients using Windows 2000 or Windows XP SP2:

If I make an exception for Ports 21 and 20 in Windows Firewall, clients can connect using "active FTP".

If I disable Windows Firewall on the server, clients  can connect with passive and active ftp enabled.

My boss wants the firewall enabled, of course, but he also wants the clients to connect using Passive mode since this is the default setting when you install windows.  He uses the example that passive FTP can connect to ftp://Microsoft.com no problem.  What is Microsoft doing that I am not?

I know from reading an earlier post that you cannot put a range of ports as an exception in Windows Firewall.  Could I tell Server 2003 to use a small range of ports for passive FTP, say 1024-1029, then I could easlily make indivdual exceptions for each port?

If it's possible what are the steps?  (I am a newbie so feel free to talk down to me with as much detail as possible)
0
Comment
Question by:Hubbard1936
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 14

Accepted Solution

by:
inbarasan earned 500 total points
ID: 17957100
Dear Hubbard1936,
Refer this article : http://www.newagedigital.com/cgi-bin/newagedigital/articles/ms-firewall-ftp.html

Hope it helps

Cheers!
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

So you have two Windows Servers and you have a directory/folder/files on one that you'd like to mirror to the other?  You don't really want to deal with DFS or a 3rd party solution like Doubletake. You can use Robocopy from the Windows Server 200…
Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question