Solved

FTP Server IBM i -  Passive Modus and IP Address

Posted on 2016-11-14
2
80 Views
Last Modified: 2016-11-17
Hi,

A customer is using the IBM i (V5R4) as a FTP server (with exit points programs caring about security).
The server was accessible from internet even in passive modus but since the firewall was changed, we cannot access it.
According with the IT Staff from the customer (and Cisco support, the new firewall provider):

“the server has to provide the public IP address when going into passive
mode for the transfer to work that's why you're getting that error.
You'll need to speak to vendor of the server for alternatives for it to
provide the public address.”

Unfortunately, I cannot find the way to change this setting in IBM i (I don´t even know it this is possible)

Anybody with experience?
0
Comment
Question by:jaimosky
2 Comments
 
LVL 16

Accepted Solution

by:
max_the_king earned 500 total points
ID: 41886461
Hi,
i've been there before ...

what i figured out is that iSeries implements its own ftp passive redirection in that gives its real IP address to the requested ftp client instead giving it the natted (public IP) address. This way, after succesfully open connection, it cannot transfer data.
The only workaround i found was to connect via vpn-client from the ftp client: this way, even in PASV mode, the real internal IP address wouldn't change, and it successfully transfer data to and from the client.

I don't know if you can find a better solution ...

hope thish helps
max
1
 

Author Comment

by:jaimosky
ID: 41891533
Apparently it is possible to perform it in the firewall, the IT staff was not well informed.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Original post  on Monitis Blog. Web performance monitoring is broken into two camps: passive and active. Passive monitoring is defined as looking at real-world historical performance by monitoring actual log-ins, site hits, clicks, requests for…
This article was initially published on Monitis Blog, you can read it here . When it comes to deciding which approach to website performance monitoring is best for your business, unfortunately, like so many options in life . . . it depends. In t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

733 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question