Can't get FTP to work on Windows Server 2008

I am able to connect to the server while on the local network; however, when I try from an external computer, I cannot log in.

That makes me think that the firewall is blocking FTP traffic, but if I forward port 21 to another computer behind the server (and thus behind the firewall) that has a separate FTP server running, I can connect to that.

Please help!
aesdttOwnerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

aesdttOwnerAuthor Commented:
One other thing I have noticed:

From behind the Win2k8 server (whose DNS name is server.ourdomain.com), I can connect to most of my usual FTP sites - however, when I try connecting to our web server through FTP at www.ourdomain.com, I am unable to connect and get the following response:

Status:      Resolving address of <ftp server>
Status:      Connecting to <ip address>
Status:      Connection established, waiting for welcome message...
<welcome message removed>
Command:      USER <username>
Response:      331 Please specify the password.
Command:      PASS *******
Response:      230 Login successful.
Command:      SYST
Response:      215 UNIX Type: L8
Command:      FEAT
Response:      211-Features:
Error:      Connection timed out
Error:      Could not connect to server

The odd thing is that I can connect to www.ourdomain.com if I am on the 2k8 server, just not from behind it...maybe a DNS issue (??)
0
Andres PeralesCommented:
have you exempted ftp on the firewall installed on the server?
0
aesdttOwnerAuthor Commented:
I have added exceptions for ports 20 & 21, and have added an exception for the FTP server exe (I am using FileZilla Server).

I even at one point established a custom port range for passive FTP and added exceptions for all of them, but that did not help either.
0
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

aesdttOwnerAuthor Commented:
so I guess I'm on my own with this one (?)
0
aesdttOwnerAuthor Commented:
there's not anything in the group policies that would affect it is there?
0
aesdttOwnerAuthor Commented:
Finally figured it out!  It is the Application Layer Gateway service...saw on another forum that it causes problems with FTP, so I stopped it and the FTP worked.  Restarting the service did not cause further problems, so now I just need to figure out 1) what it is doing to prohibit FTP, and 2) do I need that service for anything else...
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Server Software

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.