IIS used to use the FTP-Data port (TCP-20) for communication rather than picking a random high port. This was to assist with Firewall behavior. Might see if forwarding port 20 will fix your issue.
-K --- Original Message --- From: "Pearson, Andrew" <[EMAIL PROTECTED]> To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]> CC: Date: Wed, 10 Jul 2002 11:38:21 -0500 Subject: IIS 5 - FTP and smoothie > Received: from outgoing.securityfocus.com (outgoing3.securityfocus.com [66.38.151.27]) > by smtp.sff.net (Greyware Mailman 1.1.b.20020611R) > with ESMTP ID ; > Thu, 11 Jul 2002 11:58:35 -0500 > Received: from lists.securityfocus.com (lists.securityfocus.com [66.38.151.19]) > by outgoing.securityfocus.com (Postfix) with QMQP > id 74167A31EB; Thu, 11 Jul 2002 09:40:57 -0600 (MDT) > Mailing-List: contact [EMAIL PROTECTED]; run by ezmlm > Precedence: bulk > List-Id: > List-Post: > List-Help: > List-Unsubscribe: > List-Subscribe: > Delivered-To: mailing list [EMAIL PROTECTED] > Delivered-To: moderator for [EMAIL PROTECTED] > Received: (qmail 29060 invoked from network); 10 Jul 2002 16:35:19 -0000 > Message-ID: > From: "Pearson, Andrew" > To: "'[EMAIL PROTECTED]'" > Subject: IIS 5 - FTP and smoothie > Date: Wed, 10 Jul 2002 11:38:21 -0500 > MIME-Version: 1.0 > X-Mailer: Internet Mail Service (5.5.2653.19) > Content-Type: text/plain; > charset="iso-8859-1" > X-Exempt-Data: No > X-Exempt-IP: No > X-Envelope-From: security-basics-return-12893- [EMAIL PROTECTED] > X-Renamed-Executables: No > X-Disabled-Scripts: No > > Hi all, > > I have a small problem with my network, i wondered if anyone has any suggestions. > The problem lies with my IIS 5.0 server which is sitting behind a SmoothWall Firewall box. > When I FTP to the server while on the inside of the network, I get a connection. And when > I do a GET or a DIR then I recieve the proper response with a file or directory listing... > Now, when I access the server from the outside of the network through smoothwall, I still > get a connection to the server, but this time, whenever I try a DIR or GET, the session > freezes and I have to kill it. > My initial guess is that Smoothwall is allowing a connection through port 21 (which I've > allowed access), and I recieve the connection response. But the FTP server is then switching ports > to 2500 or something similar for data transfer... which I cannot open on smoothwall because > the port number changes... > Has anyone dealt with this before? I've searched on Google to no avail, and also posted on the > Smoothwall IRC channel with no success either... > > Thanks. > > Andy. > > > Andrew Pearson > Consultant > ADC Software Systems Division
