Dear all, as some of you are aware, I am new to Windows SBS 2003, see here http://www-new.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/SBS_Small_Business_Server/Q_22106670.html?qid=22106670#a18219200
Now that we appear to have all our DNS woes out of the way, and all clients are connected to the domain, we currently have one drawback. Using passive FTP.
I should state now that the company I work for is an agent for a delivery network (think franchise, but slighlty different). As such we have no choice but to use their bespoke software. One of the major parts, in this case, is an FTP Client, which uses passive FTP.
It would appear that we can log in via the SBS server, but every time we try to log in on a client, we get the following...
ftp> open [censored for security reasons]
connected to [censored for security reasons]
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 31 of 200 allowed.
220-Local time is now 06:53. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 2 minutes of inactivity.
User ([censored for security reasons]:(none)): [censored]
Connection closed by remote host.
Just in case you are not sure, the setup is NET -> Router -> SBS -> Switch -> Clients
We have enable FTP (Port 21) in the additional firewall settings when running the CEICW, and we also created and added Port 20 (TCP). From speaking to the tech support guys in our network, who unfortunately have no experience of SBS 2003's firewall, it looks like I may also need to open some ports for the random FTP response. Looking here http://www.newagedigital.com/cgi-bin/newagedigital/articles/ms-firewall-ftp.html
I note that they are in the 1024-65535 range. Thats a lot of ports.
The problem is, and I may well be being blind here, that I cannot find any other way of configuring the firewall other than in the CEICW. And if that IS the route to take, I am not exactly sure what additional ports other than 20 and 21 I should add.
We did try to follow the instructions at http://www.newagedigital.com/cgi-bin/newagedigital/articles/ms-firewall-ftp.html
but fell over at:
Type the following command where the range is specified in "..". cscript.exe adsutil.vbs set /MSFTPSVC/PassivePortRange
... with the error:
Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.
The path requested could not be found.
ErrNumber: -2147024893 (0x80070003)
Error Trying To Get the Object: MSFTPSVC
But I am not sure that that is the right thing to do anyway, as everything I am currently coming accross appears to indicate connecting to an FTP site ON the server, from the outside world. We just need to be able to connect to and FTP site IN the outside world.
If there is anymore information required, ie output of specific files or logs please let me know and I will provide them ASAP.