At the company I work we are using FTP to transfer files between out company and telemarketing bureaus.
Since FTP is not very safe for transferring this kind of data, we want to switch to something safer. We thought we could do this by switching to FTPS (FTP over SSL)
Our FTP server (Novell) supports FTPS, so we thought this switch would be quite easy, After setting the Novell server to support both FTP and FTPS (to later switch it to only FTPS) everything worked fine when we tested it (from a PC inside our network) but if we test it from a pc outside our network, we run into some troubles.
The PC can get a connection, but when the directory listing is requested, it gets some kind of timeout.
Here’s the log file:
Status: Connecting to x.x.x.x ...
Status: Connected with x.x.x.x, negotiating SSL connection...
Response: 220 Service Ready for new User
Command: AUTH SSL
Response: 234 Enabling SSL
Status: SSL connection established. Waiting for welcome message...
Command: USER username
Response: 331 Password Needed for Login
Command: PASS *********
Response: 230 User username Logged in Successfully
Response: 215 NETWARE Type : L8
Response: 500 'FEAT' : Unknown Command
Command: PBSZ 0
Response: 200 Protection Buffer Size set. PBSZ=0
Command: PROT P
Response: 200 Protection Level is set
Status: Retrieving directory listing...
Response: 257 "/" is Current Directory
Command: TYPE A
Response: 200 TYPE Command OK A
Response: 227 Entering Passive Mode (10,99,29,21,8,44)
Response: 150 Opening data connection for (y.y.y.y,2092)
Error: Transfer channel can't be opened. Reason: Een verbindingspoging is mislukt omdat de verbonden party niet correct heeft geantwoord na een bepaalde tijd, of de gemaakte verbinding is mislukt omdat de verbonden host niet heeft geantwoord.
Error: Could not retrieve directory listing
Command: TYPE I
Error: Timeout detected!
Status: Waiting to retry... (5 retries left)
The error message it in dutch, in English it would be “A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond.”
All I can find on the internet is that I have to try “active mode”, I tried that, and it didn’t help (I got another timeout message)
Another thing I found is that it got something to do with firewall settings. I however can’t find which.
I hope some of you know how to solve this problem.
Does the client or the server need to open firewall ports? And which one? (I hope it’s the server, because I don’t think our customers would like to open ports)