Filezilla Server passive FTP no access
Hello,
I have a windows server 2016 with an Filezilla server installed and he uses the passive mode for ftp authentication with that tcp range: 40000-41000
But users cant connect via filezilla to the server and getting follow error code:
"425 Can't open data connection for transfer of "/"
The local windows firewall is disabled on the windows server.
On my watchguard M270 I have a SNAT configured with that setting:
Static -> NAT -> my public ip -> local Filezilla Server IP
And I got a firewall policie with that settings:
From Any to -> FTP (SNAT) public ip --> filezilla local server ip
Port 21 , Port 40000-41000
Connections are allowed.
But I am still not able to connect to the passive ftp server.
Do you know what i have to configure that my ftp server is reachable from internal and external networks?
Thanks
Comments
Is your FTP policy a predefined one, or one that you created?
You should use a predefined one
Review this:
Why does the FTP policy allow ports other than 21?
https://techsearch.watchguard.com/KB?type=Article&SFDCID=kA10H000000g3WwSAI&lang=en_US
I used a predefined ftp policie. But it still has no impact.
Can I somehwere see the events on the firewall when a ftp connection is trying to establishe and the watchguard is dropping the packets?
If you use the FTP proxy, you can turn on Diagnostic Logging for the FTP proxy.
Set it to Information.
You can then look at Traffic Monitor to see what is being logged.