FTP forwarding

Hi, I have moved my FTP server from a Linux server to a Windows 2012 server, I have all settings configured and can access the service internally but can not externally.
My firewall has the same port forwarding as I did for the Linux server and if I switch back to Linux it goes in with no issues. have I missed something on the Windows config?
atorexAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

WayneATaylorCommented:
Sounds like a Passive/Active mode issue.
Take a look at

stackoverflow.com/questions/1699145/what-is-the-difference-between-active-and-passive-ftp

Wayne
0
atorexAuthor Commented:
This link has information but nothing on Windows 2012 configuration, I do believe you are correct this is an issue with passive/active. Do you know where and how to make this setting change on the 2012 IIS, i cant find the setting.
0
AlexPaceCommented:
If it is a data channel issue you will be able to authenticate but not get a traditional directory listing.  The FTP client makes the choice of active or passive mode data channels... the only server-side configuration in this regard is usually the range of ports to use if the client requests passive mode.  Some FTP servers also allow you to specify a public IP address to send in the PASV response but this is usually only necessary if the control channel is protected by SSL/TLS or your firewall does not snoop FTP and do automatic translation on the fly.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

atorexAuthor Commented:
I guess I will leave it on Linux server, I did set the range of ports but still connects as you described awaiting welcome banner.

thanks for the help.
0
AlexPaceCommented:
If you got the 220 welcome message and were able to send username and password then your control channel was fine and most likely the timeout happened because it couldn't negotiate a data channel.  

If it didn't even get that far then either the connection on port 21 is blocked or the FTP server software isn't answering the call.
0
atorexAuthor Commented:
I'm able to enter user and password it times out after that
0
AlexPaceCommented:
Some FTP clients go ahead and prompt for username and password before even trying to connect so that can give you a false impression about where the failure happens...

If it is a real data channel failure then, when you look at the log, you'll see the server says 220 welcome and then your client sends USER blahblah and then the server says password required for blahblah and then the client sends PASS secretpw1 and then the server says user blahblah logged in and then the client tries to do something that requires a data channel and it hangs after that...  If that is happening it is definitely a data channel issue.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2012

From novice to tech pro — start learning today.