ftp-authssl Ports

Mysteerie · #1 01-15-2005, 01:35 PM

When I use ftp-authssl to connect through FTP. With my APF firewall off, it works properly, but with it on, it doens't display the folders.

What ports are required (beside 21) to allow SSL FTP through APF? Thank you.

I did a search and did find a few post, but the guy wasn't totally trustable, since I found a post saying those ports were wrong. So just posting a message in case anyone uses FTP SSL and what ports they have open.

error404 · #2 01-15-2005, 04:03 PM

Only port 21, if you're using active mode on the client. Otherwise you'll need to open a portrange and configure your FTP server to use it for data connections.

There really is no difference between the two, other than the fact that you can encrypt one. They work the same way, and use the same ports etc.

bitserve · #3 01-15-2005, 05:22 PM

You need to allow the data connection back from the server from tcp source port 20 back to the tcp port that the client originated the control connectin from. You didn't say if the firewall was on the client or the server. But you might try passive ftp mode.

Mysteerie · #4 01-17-2005, 03:51 AM

Sorry, the firewall is on the server. I do have a personal firewall, though I have opened ports 20 and 21 on my personal firewall.

Also when I turn "OFF" the firewall on the server, SSL through FTP works properly on my personal computer.

I'm currently tried using passive and active mode through FTP, it didn't make a differnce. Currently I have it on active mode.

Mysteerie · #5 01-17-2005, 03:53 AM

Oh yea I have ports 20 and 21 open in APF (my firewall on the server).

error404 · #6 01-17-2005, 03:59 AM

I suggest you open a block of ports on your server and direct your FTP daemon to use them as data ports.

bitserve · #7 01-17-2005, 12:45 PM

Quote:

Originally posted by bitserve
[B]You need to allow the data connection back from the server from tcp source port 20 back to the tcp port that the client originated the control connection from.

More than likely, need to allow outgoing traffic from tcp source port 20 to a random high numbered tcp port. To do this more controlled, you should use state. Good luck.

ftp-authssl Ports

Sponsored Links

Advertise Here

Internet Services

Web Development

Digital Marketing

Consumer Tech