compsol1993
asked on
Win 2k3 Joined to Server 2008 Domain - FTP Not Working
Hello,
We have a Win 2k3 Std server that was attached to a Windows 2k3 domain. We unjoined that domain and joined a Win 2k8. Everything has worked well, except for FTP.
From the server running FTP, if I go to ftp://localhost/ it works. If I go to ftp://10.0.0.3/ (the server's IP), it also works. From any other machine on the local network, it does not work using the IP or the name of the server.
We have this FTP setup for anonymous access, which is how we always used it. If I go to FTP settings in IIS, it is set to allow anonymous access using IUSR... I even checked to make sure that user still existed under local users and it does.
Any suggestions for what else I need to look at?
Thanks
We have a Win 2k3 Std server that was attached to a Windows 2k3 domain. We unjoined that domain and joined a Win 2k8. Everything has worked well, except for FTP.
From the server running FTP, if I go to ftp://localhost/ it works. If I go to ftp://10.0.0.3/ (the server's IP), it also works. From any other machine on the local network, it does not work using the IP or the name of the server.
We have this FTP setup for anonymous access, which is how we always used it. If I go to FTP settings in IIS, it is set to allow anonymous access using IUSR... I even checked to make sure that user still existed under local users and it does.
Any suggestions for what else I need to look at?
Thanks
ASKER
Yes, it set it to the new domain's firewall settings as dictated by Group Policy.
So I added a rule for FTP.
Now I can telnet to the FTP port from another PC, so I do not believe it is a firewall issue at this point.
So I added a rule for FTP.
Now I can telnet to the FTP port from another PC, so I do not believe it is a firewall issue at this point.
Try disabling the firewall on that server and see if the problem goes away (move it to a different OU with an exception, for example). In this way we can verify for certain whether it is a firewall issue or something else.
ASKER
Ok, i did that and it still is not working, so i think we can rule out the Firewall.
We also have AVG, so I disabled that, no luck doing that either.
We also have AVG, so I disabled that, no luck doing that either.
Is the anonymous user that FTP is set for pointing to the old domain or to the new one or to a local account?
ASKER
It's a local account, and I confirmed it still existed.
I even tried adding them as a user with read permissions to the FTP directory, in case that was the issue.
I even tried adding them as a user with read permissions to the FTP directory, in case that was the issue.
can you, from another computer, connect to the server via the FTP protocol? (Start... run... CMD... ftp... open 10.0.0.3)
ASKER
This is interesting. I tried what you suggested, but with the command
ftp -A 10.0.0.3
That connected, and even said Anonymous Authentication successful for myUser@myDomain
So now that I am logged in, I try to "ls" to view the folder contents. Doing that, the system just hangs for about 2 minutes, said it times out, and closes my connection.
If I try to access the ftp using Explorer, I also get a timeout message (never asks for login).
I also tried FileZilla, and it times out why trying to get directory contents.
ftp -A 10.0.0.3
That connected, and even said Anonymous Authentication successful for myUser@myDomain
So now that I am logged in, I try to "ls" to view the folder contents. Doing that, the system just hangs for about 2 minutes, said it times out, and closes my connection.
If I try to access the ftp using Explorer, I also get a timeout message (never asks for login).
I also tried FileZilla, and it times out why trying to get directory contents.
So, FTP itself is working. It just won't let you access your desired directory. If you don't connect anonymously, and instead use your domain credentials, does it let you traverse the folder structure?
ASKER
No it doesn't, I've tried our domain administrator, with just the username, and then again with domain\username
It times out every time.
The actual ftproot folder has standard security settings, giving domain administrators Full Control.
And keep in mind, when logging in locally, Anonymous access works fine.
It times out every time.
The actual ftproot folder has standard security settings, giving domain administrators Full Control.
And keep in mind, when logging in locally, Anonymous access works fine.
ASKER
locally * i should say, when trying ftp://10.0.0.3 from the ftp server itself
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
To get this working, I did as you suggested, and got it working.
ASKER
Thanks
Justin