[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

How can I set up IIS 7.5 FTP Service to accept internal and external traffic using Passive (SSL/TLS)

Posted on 2011-03-09
3
Medium Priority
?
1,296 Views
Last Modified: 2013-12-02
What I am trying to do is set up a FTP server that goes through ISA 2006.  I have it working from external sites using the proper configation of setting up specific ports on both the fiewall and IIS.  Both encryypted and unencrypted traffic work as expected. (BTW, I am not using the built in windows firewall).

My problem is when I try and connect from inside our network and use any passive connection.  It fails to give me a directory listing.  The reason for this is because you have to program in the outside IP address in the firewall config on IIS.  That tells IIS to use the outside IP address even though we are inside.

Is there the possibility to get this to work without having to send our users out the firewall and back into a DMZ port. (No I am not currently using a DMZ for this box)
0
Comment
Question by:EddieWieder
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 34

Expert Comment

by:Dave_Dietz
ID: 35131023
If your network configuration is such that you have to use the "Firewall Configuration" options for FTP in IIS then your only real option to support internal users would be to create a second FTP site for your internal users pointing to the same content.

The Firewall Configuration options in FTP are only there to act as a band-aid for poorly behaving NAT and Firewall/router devices that can't properly support FTP connections.  If you have to use these they modify the underlying responses sent by the FTP service and generally render it inoperative for connections that don;t go through the errant device(s).

Dave Dietz
0
 

Accepted Solution

by:
EddieWieder earned 0 total points
ID: 35167755
Thanks for your response, however, I have figured it out.  For some reason when I left out the IP address in the FTP Site configuation but left in the port ranges on the FTP Server configuation and set up the ISA firewall rule(s) with these port ranges, all started to work.  I had tried this before but had no luck.  I think it might have been because I was not restarting the actual FTP service, but instead using iisreset instead.
0
 

Author Closing Comment

by:EddieWieder
ID: 35196695
After trial and error I finally figured out the issue.
Always restart the service in services.msc after making changes to either ports or firewall ip in the iis manager.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this modest contribution, I want to share with the IT community (especially system administrators, IT Support Engineers and IT Help Desks) about Windows crashes/hangs and how to deal with these particular problems.
By default Outlook 2016 displays only one time zone in the Calendar. The following article explains how to display two time zones in one calendar view.
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question