Re: Opening A Specific IP Address

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Well With Security you are Unblocking a PORT Into the server.

and since you don't know what port that is? (You said it's random)

????

Did you run that software to see what Ports are being used during a FTP
Session?

--
Russ Grover
Small Business IT Support
Portland\Beaverton OR USA
Email: Sales at SmallBusinessITSupport.com
Website: www.SmallBusinessITSupport.com


"Bob" <Bob@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:993618B3-CDD6-477F-92A8-E2AC29C1F2EE@xxxxxxxxxxxxxxxx
>I can connect to most sites this is a special case. Is there anyway to
> unblock a specific ip address in the SBS firewall? I use a hardware
> firewall
> and the SBS firewall without ISA at this time.
>
> Bob
>
> "Russ Grover" wrote:
>
>> To View Firewall Logs
>> To view the ICF security log
>>
>> 1.. Open Network Connections.
>> 2.. Right-click the connection on which Internet Connection Firewall
>> (ICF)
>> has been enabled, and then click Properties.
>> 3.. On the Advanced tab, click Settings.
>> 4.. On the Security Logging tab, under Log file options, in Name, click
>> Browse.
>> 5.. Scroll to the ICF security log, right-click the file, and then
>> click
>> Open.
>>
>> Seems Weird why you cann't connect?
>>
>> --
>> Russ Grover
>> Small Business IT Support
>> Portland\Beaverton OR USA
>> Email: Sales at SmallBusinessITSupport.com
>> Website: www.SmallBusinessITSupport.com
>>
>>
>> "Bob" <Bob@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> news:44F831E8-5560-4BEA-BB74-BA1F831A582D@xxxxxxxxxxxxxxxx
>> > Yes other people who do not use SBS can get into the FTP site. I can
>> > FTP
>> > to
>> > most other sites. I have other customers who connect to my FTP site on
>> > my
>> > SBS
>> > server with no problem. When I disable the SBS firewall I can connect
>> > without
>> > any problems. Is there a log somewhere that would show me exactly what
>> > the
>> > SBS firewall is doing? I do not have any other firewall on the PC but I
>> > am
>> > using a hardware firewall that is working properly. The way I
>> > determined
>> > that
>> > their server was sending high port request was to close the hardware
>> > firewall
>> > completely and then watch the log. It showed their ip with random high
>> > port
>> > calls to my server. If I open up the FTP port on the hardware firewall
>> > it
>> > passes through fine. It just gets stopped at SBS if it's firewall is
>> > turned
>> > on. I am not using XP to access this. I am using the SBS.
>> >
>> > Thanks
>> > Bob
>> >
>> > "Russ Grover" wrote:
>> >
>> >> Well I don't think it's ports..
>> >>
>> >> Can ANYONE else FTP into that Server? (Checking the server side)
>> >>
>> >> Can you FTP Anywhere else?
>> >>
>> >> Try DOS FTP and also try another System outside of your SBS network
>> >> Let's Eliminate possible software problems before you start opening up
>> >> ports/disabling Firewalls..
>> >>
>> >> Do you have Any additional Firewalls on the PC like Zone Alarm?
>> >> Also make sure that the XP Firewall Allows network access to your FTP
>> >> Program?
>> >>
>> >> --
>> >> Russ Grover
>> >> Small Business IT Support
>> >> Portland\Beaverton OR USA
>> >> Email: Sales at SmallBusinessITSupport.com
>> >> Website: www.SmallBusinessITSupport.com
>> >>
>> >>
>> >> "Bob" <Bob@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>> >> news:E6EF3E0B-8C80-4866-B67B-F9AA4F0E7DD9@xxxxxxxxxxxxxxxx
>> >> >I have port 21 open on my end. When I connect to their site they send
>> >> >a
>> >> > response on a high port which the software firewall is blocking.
>> >> > This
>> >> > is
>> >> > the
>> >> > FTP conversation with the ip address replaced with x's:
>> >> >
>> >> > Connecting to xxx.xx.xx.xxx:21
>> >> > Connected to xxx.xx.xx.xxx:21 in 0.000000 seconds, Waiting for
>> >> > Server
>> >> > Response
>> >> > 220 xxxxxxftp01 Microsoft FTP Service (Version 5.0).
>> >> > Host type (1): Automatic Detect
>> >> > USER myusername
>> >> > 331 Password required for myusername.
>> >> > PASS (hidden)
>> >> > 230-Welcome to the mycustomer FTP site for myusername
>> >> > 230 User myusername logged in.
>> >> > SYST
>> >> > 215 Windows_NT version 5.0
>> >> > Host type (2): Microsoft NT
>> >> > PWD
>> >> > 257 "/" is current directory.
>> >> > TYPE A200 Type set to A.
>> >> > PORT 192,168,1,101,151,193 {192,168,1,101 is my ip address on my
>> >> > external
>> >> > NIC}
>> >> > 200 PORT command successful.
>> >> > LIST
>> >> > 150 Opening ASCII mode data connection for /bin/ls.
>> >> > PASV
>> >> > Error reading response from server.
>> >> > It appears that the connection is dead. Attempting reconnect...
>> >> >
>> >> > It tries 3 times and then quits.
>> >> > Any Ideas on how to open the ip address this request is coming from?
>> >> >
>> >> > Thanks
>> >> > Bob
>> >> > "Russ Grover" wrote:
>> >> >
>> >> >> I guess I don't understand what's going wrong?
>> >> >> Default FTP port is 21
>> >> >>
>> >> >> So when you connect to him (unless he's configured it for a
>> >> >> different
>> >> >> port.)
>> >> >> It's port 21 and that's it?
>> >> >>
>> >> >> What seems to be the problem?
>> >> >> (I don't understand your statment of "When I try to connect they
>> >> >> try
>> >> >> and
>> >> >> send a port command?)
>> >> >>
>> >> >>
>> >> >> What errors are you getting when you FTP?
>> >> >>
>> >> >> Russ
>> >> >>
>> >> >> --
>> >> >> Russ Grover
>> >> >> Small Business IT Support
>> >> >> Portland\Beaverton OR USA
>> >> >> Email: Sales at SmallBusinessITSupport.com
>> >> >> Website: www.SmallBusinessITSupport.com
>> >> >>
>> >> >>
>> >> >> "Bob Snee" <swsupport@xxxxxxxxxxxxxxx> wrote in message
>> >> >> news:OCpX0QqgFHA.1468@xxxxxxxxxxxxxxxxxxxxxxx
>> >> >> >I access a customers ftp site to download and upload information
>> >> >> >nightly.
>> >> >> >According to the customer when I connect they try to send a port
>> >> >> >command
>> >> >> >back to a random high port. SBS firewall is blocking this port. I
>> >> >> >used
>> >> >> >the
>> >> >> >CEICW to setp the firewall. Since it is a random port is there
>> >> >> >anyway
>> >> >> >to
>> >> >> >open an ip address for all ports? I fully trust this client. There
>> >> >> >strict
>> >> >> >security procedures require this port call.
>> >> >> >
>> >> >> > Any help would be greatly appreciatted.
>> >> >> >
>> >> >> > Bob
>> >> >> >
>> >> >>
>> >> >>
>> >> >>
>> >>
>> >>
>> >>
>>
>>
>>


.

Relevant Pages

  • Re: How to Maintain an IIS Server?
    ... > server running on a Windows 2000 server. ... before a firewall and antivirus have been installed]. ... open ports; however, this will not identify which program is using the port. ...
    (microsoft.public.inetserver.iis.security)
  • Re: CEICW fails at firewall config
    ... ISA Server prevents connection to a remote desktop when you connect through ... Remote Web Workplace on a Windows Small Business Server 2003-based computer ... Acceleration Server as a firewall. ... connection uses TCP port 4125. ...
    (microsoft.public.windows.server.sbs)
  • Re: How to Maintain an IIS Server?
    ... >> server running on a Windows 2000 server. ... > before a firewall and antivirus have been installed]. ... > program or executable using that port. ...
    (microsoft.public.inetserver.iis.security)
  • Re: Activesync / Airsync - Alternative Ports
    ... Setup a reverse HTTP proxy. ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to ...
    (microsoft.public.pocketpc.activesync)
  • Re: Activesync / Airsync - Alternative Ports
    ... "Chris De Herrera" wrote: ... Another idea is to use the PPTP capabilities of a Windows Server to allow ... Satellite - Cisco Firewall - Exchange Server ... So on the server side you would configure the port 80 to redirect to 8888 ...
    (microsoft.public.pocketpc.activesync)