Solved

FTP Server IBM i -  Passive Modus and IP Address

Posted on 2016-11-14
2
62 Views
Last Modified: 2016-11-17
Hi,

A customer is using the IBM i (V5R4) as a FTP server (with exit points programs caring about security).
The server was accessible from internet even in passive modus but since the firewall was changed, we cannot access it.
According with the IT Staff from the customer (and Cisco support, the new firewall provider):

“the server has to provide the public IP address when going into passive
mode for the transfer to work that's why you're getting that error.
You'll need to speak to vendor of the server for alternatives for it to
provide the public address.”

Unfortunately, I cannot find the way to change this setting in IBM i (I don´t even know it this is possible)

Anybody with experience?
0
Comment
Question by:jaimosky
2 Comments
 
LVL 16

Accepted Solution

by:
max_the_king earned 500 total points
ID: 41886461
Hi,
i've been there before ...

what i figured out is that iSeries implements its own ftp passive redirection in that gives its real IP address to the requested ftp client instead giving it the natted (public IP) address. This way, after succesfully open connection, it cannot transfer data.
The only workaround i found was to connect via vpn-client from the ftp client: this way, even in PASV mode, the real internal IP address wouldn't change, and it successfully transfer data to and from the client.

I don't know if you can find a better solution ...

hope thish helps
max
1
 

Author Comment

by:jaimosky
ID: 41891533
Apparently it is possible to perform it in the firewall, the IT staff was not well informed.
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Where do I find forms on "Priniter' line in 36 proc?  ex: FORMSNO-30DY 2 103
Restrict FTP & ODBC Access 1 229
iSeries ODBC Exit Point 11 406
IBM Virtual Tape Appliance Research 14 352
How do we balance the user experience (UX) with reasonable security measures? It can be done, if you keep these fundamentals in mind.
Do you use a spreadsheet like Microsoft's Excel?  Have you ever wanted to link out to a non excel file on your computer or network drive?  This is the way I found to do it!
In a recent question (https://www.experts-exchange.com/questions/28997919/Pagination-in-Adobe-Acrobat.html) here at Experts Exchange, a member asked how to add page numbers to a PDF file using Adobe Acrobat XI Pro. This short video Micro Tutorial sh…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now