Re: How do you set Passive Port Range for IIS 5.0 on XP Pro

Hard to tell, it could be connection... or blocking.
can you test locally? same behavior?

it hang there ? is port 20 outbound allow from the server?



--
Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/


"Delta Mike" <DeltaMike@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:799A5B31-04FC-4AAA-AEC3-51FE6E67FE48@xxxxxxxxxxxxxxxx
C:\>ftp <IP address>
Connected to <IP address>
220 Microsoft FTP Service
User (<IP adress>:(none)): testftp
331 Password required for testftp.
Password:
230 User testftp logged in.
ftp> dir
200 PORT command successful.
<blinking cursor>

That's it, it will sit there. Since I cannot test from a nearby system
(another organization controls the backbone) and I can only test over the
phone with the distant end, I don't know if/when it will time out.

But if the user executes a cd <dirname> (assuming he has access to it), it
is successfull, as is a pwd.

If the user attempts to put a file, he gets the blinking cursor and I get
a
zero size file with the appropriate file name. The distant end will never
be
pulling data, so I did not have him test the get function.

Performing a netstat -p tcp shows his connection and the random port.
After
some research, I gathered this to mean I need to have a port range set up
for
passive mode.

Thank you,
DM

"Bernard Cheah [MVP]" wrote:

The article doesn't applies to XP.
and the syntax is hyphen or dash.

as for you issue. have you try connect via ftp.exe ? post the output
here.

--
Regards,
Bernard Cheah
http://www.iis.net/
http://www.iis-resources.com/
http://msmvps.com/blogs/bernard/


"Delta Mike" <Delta Mike@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:EBD2F8AF-538F-4A81-89BE-79A2091D3170@xxxxxxxxxxxxxxxx
I am setting up an FTP server; I have a range of ports available for
use; I
have looked at: http://support.microsoft.com/kb/555022 ; Windows
Firewall
has
been disabled.

How do you set the range? If the above settings work (from the 2K
section),
what is the syntax for the registry entry? (tried comma, space,
dash/hyphen,
and colon)

Symptoms:
Local login to the FTP site works, remote login happens, commands are
sent,
but no data. eg cd <dir> and pwd work as expected, dir returns no data
and
no
prompt, and put only touches a file - no data transfered

Thank you,
DM





.

Relevant Pages

  • RE: Telnet/ftp problems SBS2000
    ... Please make sure your client computers are configured as both Firewall ... will find two options "Enable folder view for FTP sites" and "Use Passive ... that the control connection has been successfully established, ... (other than port 21) ...
    (microsoft.public.windows.server.sbs)
  • Re: IPSwitch, Inc. WS_FTP Server
    ... > bounce attack as well as PASV connection hijacking. ... > The FTP bounce vulnerability allows a remote attacker to cause the ... > anonymously along with any internal addresses that the FTP server has ... That means it's got to handle a PORT ...
    (Bugtraq)
  • RE: FTP Window of opportunity?
    ... target on the line when in reality it was just a firewall lying to them. ... The connection connects and then immediately ... Subject: FTP Window of opportunity? ... the FTP port shows up. ...
    (Pen-Test)
  • Re: Iptables FTP question
    ... think all other related would be from specific modules,the FTP and IRC ... Keep in mind that connection ... source port of 20 if it is for port mode data connections(for a standard ... I would also break down your rules into chains instead of appending such ...
    (comp.security.firewalls)
  • Re: Passive means what during FTP?
    ... :227 Entering Passive Mode ... :ftp: connect: No route to host ... The FTP data transfer uses a connection that is separate from the ... address and port number to connect to for the data transfer. ...
    (comp.os.linux.setup)