Re: Opening A Specific IP Address

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Yes other people who do not use SBS can get into the FTP site. I can FTP to
most other sites. I have other customers who connect to my FTP site on my SBS
server with no problem. When I disable the SBS firewall I can connect without
any problems. Is there a log somewhere that would show me exactly what the
SBS firewall is doing? I do not have any other firewall on the PC but I am
using a hardware firewall that is working properly. The way I determined that
their server was sending high port request was to close the hardware firewall
completely and then watch the log. It showed their ip with random high port
calls to my server. If I open up the FTP port on the hardware firewall it
passes through fine. It just gets stopped at SBS if it's firewall is turned
on. I am not using XP to access this. I am using the SBS.

Thanks
Bob

"Russ Grover" wrote:

> Well I don't think it's ports..
>
> Can ANYONE else FTP into that Server? (Checking the server side)
>
> Can you FTP Anywhere else?
>
> Try DOS FTP and also try another System outside of your SBS network
> Let's Eliminate possible software problems before you start opening up
> ports/disabling Firewalls..
>
> Do you have Any additional Firewalls on the PC like Zone Alarm?
> Also make sure that the XP Firewall Allows network access to your FTP
> Program?
>
> --
> Russ Grover
> Small Business IT Support
> Portland\Beaverton OR USA
> Email: Sales at SmallBusinessITSupport.com
> Website: www.SmallBusinessITSupport.com
>
>
> "Bob" <Bob@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
> news:E6EF3E0B-8C80-4866-B67B-F9AA4F0E7DD9@xxxxxxxxxxxxxxxx
> >I have port 21 open on my end. When I connect to their site they send a
> > response on a high port which the software firewall is blocking. This is
> > the
> > FTP conversation with the ip address replaced with x's:
> >
> > Connecting to xxx.xx.xx.xxx:21
> > Connected to xxx.xx.xx.xxx:21 in 0.000000 seconds, Waiting for Server
> > Response
> > 220 xxxxxxftp01 Microsoft FTP Service (Version 5.0).
> > Host type (1): Automatic Detect
> > USER myusername
> > 331 Password required for myusername.
> > PASS (hidden)
> > 230-Welcome to the mycustomer FTP site for myusername
> > 230 User myusername logged in.
> > SYST
> > 215 Windows_NT version 5.0
> > Host type (2): Microsoft NT
> > PWD
> > 257 "/" is current directory.
> > TYPE A200 Type set to A.
> > PORT 192,168,1,101,151,193 {192,168,1,101 is my ip address on my external
> > NIC}
> > 200 PORT command successful.
> > LIST
> > 150 Opening ASCII mode data connection for /bin/ls.
> > PASV
> > Error reading response from server.
> > It appears that the connection is dead. Attempting reconnect...
> >
> > It tries 3 times and then quits.
> > Any Ideas on how to open the ip address this request is coming from?
> >
> > Thanks
> > Bob
> > "Russ Grover" wrote:
> >
> >> I guess I don't understand what's going wrong?
> >> Default FTP port is 21
> >>
> >> So when you connect to him (unless he's configured it for a different
> >> port.)
> >> It's port 21 and that's it?
> >>
> >> What seems to be the problem?
> >> (I don't understand your statment of "When I try to connect they try and
> >> send a port command?)
> >>
> >>
> >> What errors are you getting when you FTP?
> >>
> >> Russ
> >>
> >> --
> >> Russ Grover
> >> Small Business IT Support
> >> Portland\Beaverton OR USA
> >> Email: Sales at SmallBusinessITSupport.com
> >> Website: www.SmallBusinessITSupport.com
> >>
> >>
> >> "Bob Snee" <swsupport@xxxxxxxxxxxxxxx> wrote in message
> >> news:OCpX0QqgFHA.1468@xxxxxxxxxxxxxxxxxxxxxxx
> >> >I access a customers ftp site to download and upload information
> >> >nightly.
> >> >According to the customer when I connect they try to send a port command
> >> >back to a random high port. SBS firewall is blocking this port. I used
> >> >the
> >> >CEICW to setp the firewall. Since it is a random port is there anyway to
> >> >open an ip address for all ports? I fully trust this client. There
> >> >strict
> >> >security procedures require this port call.
> >> >
> >> > Any help would be greatly appreciatted.
> >> >
> >> > Bob
> >> >
> >>
> >>
> >>
>
>
>
.

Relevant Pages

  • Re: Hacked? External address knocks on internal private address...
    ... The important part of your message is that FTP is allowed out... ... You open a connection to an FTP Server and logon. ... When you ask the server for a file the server issues a "PORT" command ... so it can open a port on the firewall to allow the incoming Data ...
    (comp.security.firewalls)
  • Re: May need to move from SBS because of connection issues
    ... Just to make sure you are clear regarding port 4125, ... access remote systems and you are behind a firewall on a non-SBS network, ... established that RWW worked TO your SBS network from outside. ... have been proof that the required ports were forwarded to the SBS server. ...
    (microsoft.public.windows.server.sbs)
  • RE: FTP Window of opportunity?
    ... does it seemingly accept the connections and drop them once the response ... Subject: FTP Window of opportunity? ... blocked by the firewall. ... the FTP port shows up. ...
    (Pen-Test)
  • RE: FTP Window of opportunity?
    ... target on the line when in reality it was just a firewall lying to them. ... The connection connects and then immediately ... Subject: FTP Window of opportunity? ... the FTP port shows up. ...
    (Pen-Test)
  • RE: Citrix and SBS 2003
    ... I'd like to confirm the steps you configure the port forwarding in SBS. ... Highlight NAT/Basic Firewall and you will see SBS server external ... Microsoft CSS Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)