Solved

FTP Server IBM i -  Passive Modus and IP Address

Posted on 2016-11-14
2
47 Views
Last Modified: 2016-11-17
Hi,

A customer is using the IBM i (V5R4) as a FTP server (with exit points programs caring about security).
The server was accessible from internet even in passive modus but since the firewall was changed, we cannot access it.
According with the IT Staff from the customer (and Cisco support, the new firewall provider):

“the server has to provide the public IP address when going into passive
mode for the transfer to work that's why you're getting that error.
You'll need to speak to vendor of the server for alternatives for it to
provide the public address.”

Unfortunately, I cannot find the way to change this setting in IBM i (I don´t even know it this is possible)

Anybody with experience?
0
Comment
Question by:jaimosky
2 Comments
 
LVL 15

Accepted Solution

by:
max_the_king earned 500 total points
ID: 41886461
Hi,
i've been there before ...

what i figured out is that iSeries implements its own ftp passive redirection in that gives its real IP address to the requested ftp client instead giving it the natted (public IP) address. This way, after succesfully open connection, it cannot transfer data.
The only workaround i found was to connect via vpn-client from the ftp client: this way, even in PASV mode, the real internal IP address wouldn't change, and it successfully transfer data to and from the client.

I don't know if you can find a better solution ...

hope thish helps
max
1
 

Author Comment

by:jaimosky
ID: 41891533
Apparently it is possible to perform it in the firewall, the IT staff was not well informed.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
monitoring is IP address Establish connection or not on iSeries host 4 120
RPG to c# 3 340
convert constant to free form 1 71
best way to update esxi hosts 6 114
There are many Password Managers (PM) out there to choose from. PM's can help with your password habits and routines, but they should not be a crutch you rely on too heavily. I also have an article for company/enterprise PM's.
Note: This is the second blog post in a series on email clearinghouses (https://www.xmatters.com/alert-management/blog-email-has-failed-us?utm_campaign=70138000000ydLoAAI&utm_source=exex&utm_medium=article&utm_content=blog-post).   Every month t…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now