Evaluating CoreFTP for secure FTP... I setup a basic site just to test connectivity:
IP: 82.nnn.nnn.229
Port: 21
Base Dir: D:\
Enable WinNT Users: Checked
WinNT Domain: <correctly entered>
I can connect to the FTP site and authenticate but then receive the 550 error on the LIST command.
FYI: I get this error whether using the Enable WinNT Users option or not using it with a CoreFTP user setup.
Using the FTP server with IIS I have no connectivity issues at all... connect, list, get, put, etc..
Yes: Ports 20/21 are open.
Any insight is greatly appreciated. Eventually I would like to use FTPS...
550 Access Denied w/CoreFTP Server -- works with IIS FTP
More Information
Thought it would be helpful to include the FTP text.
========================================
FAILURE WITH CoreFTP:
========================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Core FTP Server Version 1.0, build 148, installed 0 days ago Registered
USER (hidden)
331 password required for (hidden)
PASS (hidden)
230-Logged on
230
SYST
215 UNIX Type: L8
FEAT
211-Extensions supported
AUTH SSL
MODE Z
211 END
TYPE I
250 MODE set to I
REST 0
350 Restarting at 0
PWD
257 "/" is current directory
MODE Z
200 Mode set to Z
PORT 10,nnn,nnn,nnn,16,179
250 PORT command successful
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
Automatic failover of data connection mode from "Active Mode (PORT)" to "Passive Mode (PASV)".
PASV
227 Entering Passive Mode (82,nnn,nnn,229,13,139).
Opening data connection to 82.nnn.nnn.229 Port: 3467
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
========================================
SUCCESS WITH IIS FTP:
========================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Microsoft FTP Service
USER (hidden)
331 Password required for (hidden).
PASS (hidden)
230 User (hidden) logged in.
SYST
215 Windows_NT
FEAT
211-FEAT
SIZE
MDTM
211 END
TYPE I
200 Type set to I.
REST 0
350 Restarting at 0.
PWD
257 "/" is current directory.
PORT 10,nnn,nnn,nnn,16,250
200 PORT command successful.
LIST
150 Opening BINARY mode data connection for /bin/ls.
44 bytes transferred. (N/A/s) (0 ms)
226 Transfer complete.
========================================
FAILURE WITH CoreFTP:
========================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Core FTP Server Version 1.0, build 148, installed 0 days ago Registered
USER (hidden)
331 password required for (hidden)
PASS (hidden)
230-Logged on
230
SYST
215 UNIX Type: L8
FEAT
211-Extensions supported
AUTH SSL
MODE Z
211 END
TYPE I
250 MODE set to I
REST 0
350 Restarting at 0
PWD
257 "/" is current directory
MODE Z
200 Mode set to Z
PORT 10,nnn,nnn,nnn,16,179
250 PORT command successful
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
Automatic failover of data connection mode from "Active Mode (PORT)" to "Passive Mode (PASV)".
PASV
227 Entering Passive Mode (82,nnn,nnn,229,13,139).
Opening data connection to 82.nnn.nnn.229 Port: 3467
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
========================================
SUCCESS WITH IIS FTP:
========================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Microsoft FTP Service
USER (hidden)
331 Password required for (hidden).
PASS (hidden)
230 User (hidden) logged in.
SYST
215 Windows_NT
FEAT
211-FEAT
SIZE
MDTM
211 END
TYPE I
200 Type set to I.
REST 0
350 Restarting at 0.
PWD
257 "/" is current directory.
PORT 10,nnn,nnn,nnn,16,250
200 PORT command successful.
LIST
150 Opening BINARY mode data connection for /bin/ls.
44 bytes transferred. (N/A/s) (0 ms)
226 Transfer complete.
Well... the user I am using is an administrator on the machine, so the NT permissions are not an issue (double checked just to make sure). Also, the permissions set within CoreFTP are also good. Without using the "Enable WinNT Users" option and just setting up a user within CoreFTP with the same username as the WinNT user in the admin group, I get the same results (double checked the CoreFTP permissions as well).
=====================================
USING WINNT USERS
=====================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Core FTP Server Version 1.0, build 148, installed 3 days ago Registered
USER (hidden)
331 password required for (hidden)
PASS (hidden)
230-Logged on
230
SYST
215 UNIX Type: L8
FEAT
211-Extensions supported
AUTH SSL
MODE Z
211 END
TYPE I
250 MODE set to I
REST 0
350 Restarting at 0
PWD
257 "/(hidden)/" is current directory
MODE Z
200 Mode set to Z
PORT 10,nnn,nnn,nnn,5,115
250 PORT command successful
LIST -aL
150 Opening ASCII mode data connection
Transfer Timeout (20s). Closing data connection.
425 Could not create data channel...
Automatic failover of data connection mode from "Active Mode (PORT)" to "Passive Mode (PASV)".
PASV
227 Entering Passive Mode (82,nnn,nnn,229,13,169).
Opening data connection to 82.nnn.nnn.229 Port: 3497
LIST -aL
150 Opening ASCII mode data connection
Transfer Timeout (20s). Closing data connection.
Timeout (20s).
Active Help: http://www.smartftp.com/support/kb/index.php/74
Client closed the connection.
=====================================
NOT USING WINNT USERS
=====================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Core FTP Server Version 1.0, build 148, installed 3 days ago Registered
USER (hidden)
331 password required for (hidden)
PASS (hidden)
230-Logged on
230
SYST
215 UNIX Type: L8
FEAT
211-Extensions supported
AUTH SSL
MODE Z
211 END
TYPE I
250 MODE set to I
REST 0
350 Restarting at 0
PWD
257 "/" is current directory
MODE Z
200 Mode set to Z
PORT 10,nnn,nnn,nnn,5,162
250 PORT command successful
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
Automatic failover of data connection mode from "Active Mode (PORT)" to "Passive Mode (PASV)".
PASV
227 Entering Passive Mode (82,nnn,nnn,229,13,173).
Opening data connection to 82.nnn.nnn.229 Port: 3501
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
=====================================
I would think that just setting up a basic FTP site without any special settings (no SSL, WinNT Users, etc.) that I would be able to connect and list. It seems strange that I can connect, change to the user home directory, then not be able to list the files.
Using FTP with IIS there are no issues.
It seems like I am the only one that has had this issue as I can't seem to find any other posting of people that have had problems listing that wasn't related to permissions.
=====================================
USING WINNT USERS
=====================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Core FTP Server Version 1.0, build 148, installed 3 days ago Registered
USER (hidden)
331 password required for (hidden)
PASS (hidden)
230-Logged on
230
SYST
215 UNIX Type: L8
FEAT
211-Extensions supported
AUTH SSL
MODE Z
211 END
TYPE I
250 MODE set to I
REST 0
350 Restarting at 0
PWD
257 "/(hidden)/" is current directory
MODE Z
200 Mode set to Z
PORT 10,nnn,nnn,nnn,5,115
250 PORT command successful
LIST -aL
150 Opening ASCII mode data connection
Transfer Timeout (20s). Closing data connection.
425 Could not create data channel...
Automatic failover of data connection mode from "Active Mode (PORT)" to "Passive Mode (PASV)".
PASV
227 Entering Passive Mode (82,nnn,nnn,229,13,169).
Opening data connection to 82.nnn.nnn.229 Port: 3497
LIST -aL
150 Opening ASCII mode data connection
Transfer Timeout (20s). Closing data connection.
Timeout (20s).
Active Help: http://www.smartftp.com/support/kb/index.php/74
Client closed the connection.
=====================================
NOT USING WINNT USERS
=====================================
SmartFTP v1.5.990.4
Resolving host name "82.nnn.nnn.229"
Connecting to 82.nnn.nnn.229 Port: 21
Connected to 82.nnn.nnn.229.
220 Core FTP Server Version 1.0, build 148, installed 3 days ago Registered
USER (hidden)
331 password required for (hidden)
PASS (hidden)
230-Logged on
230
SYST
215 UNIX Type: L8
FEAT
211-Extensions supported
AUTH SSL
MODE Z
211 END
TYPE I
250 MODE set to I
REST 0
350 Restarting at 0
PWD
257 "/" is current directory
MODE Z
200 Mode set to Z
PORT 10,nnn,nnn,nnn,5,162
250 PORT command successful
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
Automatic failover of data connection mode from "Active Mode (PORT)" to "Passive Mode (PASV)".
PASV
227 Entering Passive Mode (82,nnn,nnn,229,13,173).
Opening data connection to 82.nnn.nnn.229 Port: 3501
LIST -aL
150 Opening ASCII mode data connection
550 Access is denied...
=====================================
I would think that just setting up a basic FTP site without any special settings (no SSL, WinNT Users, etc.) that I would be able to connect and list. It seems strange that I can connect, change to the user home directory, then not be able to list the files.
Using FTP with IIS there are no issues.
It seems like I am the only one that has had this issue as I can't seem to find any other posting of people that have had problems listing that wasn't related to permissions.
GREAT! This corrected the problem with the WinNT users!!
Now, let me wipe the egg from my face...
I did not have any ports open to use in PASV mode, so once I opened a port for testing I was able to connect over FTP/S to the server. However, even though I have port 210 open for PORT mode, I still can't seem to connect except in PASV mode.
I am sure this is something that I will be able to figure out by playing around or searching IPSEC/FTP sites.
Thanks for the rebuild!!!
Now, let me wipe the egg from my face...
I did not have any ports open to use in PASV mode, so once I opened a port for testing I was able to connect over FTP/S to the server. However, even though I have port 210 open for PORT mode, I still can't seem to connect except in PASV mode.
I am sure this is something that I will be able to figure out by playing around or searching IPSEC/FTP sites.
Thanks for the rebuild!!!