Server: Win Server 2008 x64 SP2, IIS 7.5
I have tried several FTP clients including FileZilla, GoFTP, Core FTP
I get the same result with all of them:
Status: Resolving address of ***********
Status: Connecting to (my correct external IP shows here):21...
Status: Connection established, waiting for welcome message...
Response: 220 Microsoft FTP Service
Command: AUTH TLS
Response: 234 AUTH command ok. Expecting TLS Negotiation.
Status: Initializing TLS...
Status: Verifying certificate...
Command: USER ztouba
Status: TLS/SSL connection established.
Response: 331 Password required for ztouba.
Command: PASS ***********
Response: 230 User logged in.
Response: 215 Windows_NT
Response: 211-Extended features supported:
Response: LANG EN*
Response: AUTH TLS;TLS-C;SSL;TLS-P;
Response: PROT C;P;
Response: REST STREAM
Response: 211 END
Command: OPTS UTF8 ON
Response: 200 OPTS UTF8 command successful - UTF8 encoding now ON.
Command: PBSZ 0
Response: 200 PBSZ command successful.
Command: PROT P
Response: 200 PROT command successful.
Status: Retrieving directory listing...
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I.
Response: 227 Entering Passive Mode (my correct external IP shows here,252,186).
Response: 150 Opening BINARY mode data connection.
Error: Connection timed out
Error: Failed to retrieve directory listing
Settings (Set at both the server(top) level and on the FTP within the "Sites" folder):
FTP Firewall Support:
Data Channel Port Range: 51701-51710
External IP Address of Firewall: (my correct external IP address)
FTP SSL Settings:
SSL Certificate: a standard SSL cert from godaddy (not EV)
SSL Policy: Custom: Control Channel: "Require only for credentials", Data Channel: "Allow"
Basic Authentication: Enabled
FTP Authorization Rules:
Allow: All Users, Permissions: Read + Write
Type: FTP, Host Name (blank), Port 21, IP Address (*)
Type: FTP, Host Name (blank), Port 990, IP Address (*)
In my Router/Firewall:
Ports allowed (and NATed): TCP: 21, 20, 990, 989, 51701-51710
Whether I connect on port 21 or 990 I get the same result. There's no difference in the log aside from it saying "external IP address:21" to saying "external IP address:990"
The only thing I've noticed is that towards the end where it says:
"Response: 227 Entering Passive Mode (my correct external IP shows here,252,186)."
the two numbers that show after my external IP are different each time.