|
Hello everybody, I'm using a free DYNDNS hostname to be able to access to my home by internet (to control my Livebox, to control my server...) I've created, on my server, a little FTP server with FileZilla. I can connect to it with FTP rules (Users, Groups, Passwords) on port 21. But I would like to connect to it with FTPS rules on port 990. I've configured my router with all ports I've needed but when I'm trying to connect to FileZilla, it shows my internal IP address (192.168.1.X) when it tries to use Passive Mode (Server sent passive reply with unroutable address. Using server address instead.) while it uses well the DynDns address for the FTP. In Active Mode with or without range of ports I have this message "150 Opening data channel for directory list. 425 Can't open data connection. Error: Failed to retrieve directory listing" Help me please =) Thank you! Cordially, ChampiWorld |
|
First of all, this is nothing to do with DynDNS, but with port forwarding and FTP server configuration only. And yes, it is quite difficult to handle FTP via firewalls, because it uses two connections, the control and command port and the data port. Most routers "understand" to handle native FTP or explicit FTPS, both passive and active, using ports 21 and 20, and maintain also the data channel implicitly, but they do not understand to handle implicit FTPS via ports 990 and 989. When using passive mode, you must configure FileZilla Server to use your public IP address, else it uses its machine address (e.g. 192.168.1.X) by default. As far as I recall, there is a settings option for this. You may also need to restrict the ports the server is going to use in passive mode, and you must explicitly define port forwarding rules for this port range on the router. For the active mode, beside port 990 as CC channel, you must forward port 989 (or whatever is used by FileZilla) for the data channel, which you may not have opened yet. Due to the problems FTP is causing with firewalls and NAT it is more appropriate to use SSH/SFTP instead of FTP/FTPS nowadays. This uses just one port, usually 22, and is also highly secure due to encryption and a lot of other security best practices. |
