FTP IP Filtering

• Previous message: Tony: "Re: FTP from web"
• Next in thread: Bernard: "Re: FTP IP Filtering"
• Reply: Bernard: "Re: FTP IP Filtering"
• Messages sorted by: [ date ] [ thread ]

Date: Fri, 22 Oct 2004 15:23:01 -0700

I have a client who needed to send me some large files and e-mail wasn't an
option, so I set up a quick and dirty FTP site hosted on a Windows 2000
Server box using IIS 5.0. The client has multiple proxy servers that are
selected via a balancing mechanism, so I started by initially denying access
in the Directory Security tab to all IPs and added the various IPs of these
proxy servers to the allow access list. In general, this worked, however,
with one specific IP address, the client keeps getting a "530 Connection
refused, unknown IP address" returned.

I turned on a network sniffer to make sure the request was getting by my
outer firewall and that the 503 message was being returned by the FTP server
and sure enough it was. I can't see any difference in the way that this
filter is set up from the other ones that seem to work. I've tried allowing
access to a group (block) of addresses without success. I've tried removing
and readding the IP address. I've even gone to the extent of allowing access
to all Ips and still get the 503 for the one specific IP address.

Does anyone have an idea why the connection would be refused for this one IP
address and not the others?

Thanks,
Scott

• Previous message: Tony: "Re: FTP from web"
• Next in thread: Bernard: "Re: FTP IP Filtering"
• Reply: Bernard: "Re: FTP IP Filtering"
• Messages sorted by: [ date ] [ thread ]