Solved

Fastream Secure FTP Setup

Posted on 2010-08-17
5
626 Views
Last Modified: 2013-12-02
I've had Fastreams FTP server running for years on a server behind a firewall.  I now need to setup a secure FTP host as well.  The port 990 is open.  I created a new ftp to listen to port 990 in the program.  I am able to connect to the new FTP server and authenticate with FileZilla from a remote location.  The problem begins when I try to get a directory listing.  In the FTPS I see:

Response:      227 Entering Passive Mode (10,192,1,23,39,16). --10.192.1.23 being the internal IP address of the server.
Status:      Server sent passive reply with unroutable address. Using server address instead.
Command:      LIST
Response:      150 Opening data connection for folder list.
Error:      Connection timed out
Error:      Failed to retrieve directory listing


When I log into the working FTP I see something like this:

Response:      227 Entering Passive Mode (xx,xx,xx,xx,12,104).-- Where xx.xx.xx.xx is the external IP address
Command:      LIST
Response:      150 Opening data connection for folder list.
Response:      226 File sent ok
Status:      Directory listing successful

Any suggestions?  I am aware the Fastream only supports explicit and I have that selected in FileZilla.

On the firewall log it shows:  the port 990 is connecting fine but then it fails trying to go to port 10000

any ideas?
0
Comment
Question by:ekee
  • 2
  • 2
5 Comments
 

Author Comment

by:ekee
ID: 33488219
It seems like the failure is in the way my network is set up?  Maybe the NAT?
0
 
LVL 32

Expert Comment

by:dpk_wal
ID: 33488531
If the client uses active mode instead of passive is the problem eliminated; if yes, then we need to set up NAT differently on WG.

Thank you.
0
 

Accepted Solution

by:
ekee earned 0 total points
ID: 33628995
I eventually worked it out myself.  The solution required all of the following - Manual Passive Mode, turned on.  WAN IP selected and entered.  Passive port range set and we had to open the same ports on the WG.  It's a little clunky but it works.
0
 
LVL 32

Expert Comment

by:dpk_wal
ID: 33629033
Thank you for the update.
0

Featured Post

Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Hello, As I have seen there a lot of requests regarding monitoring and reporting for exchange 2007 / 2010 / 2013 I have decided to post some thoughts together and link to articles that have helped me. Of course a lot of information you can get…
If, like me, you have a lot of Dell servers in the estate you manage this article should save you a little time. When attempting to login to iDrac on any server I would be presented with two errors. The first reads "Do you want to run this applicati…
Viewers will learn how to properly install and use Secure Shell (SSH) to work on projects or homework remotely. Download Secure Shell: Follow basic installation instructions: Open Secure Shell and use "Quick Connect" to enter credentials includi…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

776 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question