10ninox/_posts/2008-12-05-filezilla-and-ii...

---
layout: post
status: publish
published: true
title: FileZilla and IIS FTP server != Failed
author:
  display_name: ''
  login: ''
  email: ''
  url: ''
wordpress_id: 353
wordpress_url: http://blog.10ninox.com/2008/12/05/filezilla-and-iis-ftp-server-failed/
date: '2008-12-05 05:18:22 +0700'
date_gmt: '2008-12-05 10:18:22 +0700'
categories:
- software
tags:
- ftp server
- IIs
- FileZilla
---
<p><img style="border-top-width: 0px; border-left-width: 0px; border-bottom-width: 0px; margin: 0px 0px 0px 5px; border-right-width: 0px" height="40" alt="FileZilla Err: Failed to retrieve directory listing" src="http://blog.10ninox.com/wp-content/uploads/2008/12/image.png" width="286" align="right" border="0" />This was the problem that I couldn't solve in the past with IIS FTP server. Then I gave up using IIS and turned to FileZilla Server instead. Unfortunately, I have to use IIS FTP server again and this time I have no choice of migrating to others. Well, after figuring out for a while, I found that the reason why FileZilla couldn't retrieve directory listing is Windows Firewall is blocking its request. Since FileZilla uses passive mode as a default, it need to initiates data connection to random port which &gt; 1023 and specified by server. Here, the problem occurs; Windows Firewall blocked anything if they are not in the exception. That's why we have such a delay before Error occurs in FileZilla.</p>
<p>Well, the easiest solution here is forcing FileZilla to use 'active transfer mode' instead. Thus, client (FileZilla client) will not have to initiate data connection. It's server's job to do so. In brief, firewall is not a problem no more here and we are happy using FTP although it's not that secure protocol, but gets the job done quite well.</p>
<p><a href="http://blog.10ninox.com/wp-content/uploads/2008/12/image1.png"><img style="border-top-width: 0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px" height="155" alt="FileZilla Active Transfer Mode" src="http://blog.10ninox.com/wp-content/uploads/2008/12/image-thumb.png" width="427" border="0" /></a></p>
<p>Alternatively, we could get passive transfer mode work here too, but we need to open so many ports [of course, it's random] waiting for initiation from clients. We could specify the range by command:-</p>
<p class="codebox">C:\Inetpub\AdminScript\adsutil.vbs /MSFTPSVC/PassivePortRange &quot;8400-8420&quot;</p>
<p>Then add exception for all those ports (8400-8420 as example above). I just don't think it's a good way to add too many exceptions to firewall :-P It's just a choice; choose what suits best to yours.</p>
init migration 10 years ago			`---`
			`layout: post`
			`status: publish`
			`published: true`
			`title: FileZilla and IIS FTP server != Failed`
			`author:`
			`display_name: ''`
			`login: ''`
			`email: ''`
			`url: ''`
			`wordpress_id: 353`
			`wordpress_url: http://blog.10ninox.com/2008/12/05/filezilla-and-iis-ftp-server-failed/`
			`date: '2008-12-05 05:18:22 +0700'`
			`date_gmt: '2008-12-05 10:18:22 +0700'`
			`categories:`
			`- software`
			`tags:`
			`- ftp server`
			`- IIs`
			`- FileZilla`
			`---`
			<p><img style="border-top-width: 0px; border-left-width: 0px; border-bottom-width: 0px; margin: 0px 0px 0px 5px; border-right-width: 0px" height="40" alt="FileZilla Err: Failed to retrieve directory listing" src="http://blog.10ninox.com/wp-content/uploads/2008/12/image.png" width="286" align="right" border="0" />This was the problem that I couldn't solve in the past with IIS FTP server. Then I gave up using IIS and turned to FileZilla Server instead. Unfortunately, I have to use IIS FTP server again and this time I have no choice of migrating to others. Well, after figuring out for a while, I found that the reason why FileZilla couldn't retrieve directory listing is Windows Firewall is blocking its request. Since FileZilla uses passive mode as a default, it need to initiates data connection to random port which > 1023 and specified by server. Here, the problem occurs; Windows Firewall blocked anything if they are not in the exception. That's why we have such a delay before Error occurs in FileZilla.</p>
			`<p>Well, the easiest solution here is forcing FileZilla to use 'active transfer mode' instead. Thus, client (FileZilla client) will not have to initiate data connection. It's server's job to do so. In brief, firewall is not a problem no more here and we are happy using FTP although it's not that secure protocol, but gets the job done quite well.</p>`
			`<p><a href="http://blog.10ninox.com/wp-content/uploads/2008/12/image1.png"><img style="border-top-width: 0px; border-left-width: 0px; border-bottom-width: 0px; border-right-width: 0px" height="155" alt="FileZilla Active Transfer Mode" src="http://blog.10ninox.com/wp-content/uploads/2008/12/image-thumb.png" width="427" border="0" /></a></p>`
			`<p>Alternatively, we could get passive transfer mode work here too, but we need to open so many ports [of course, it's random] waiting for initiation from clients. We could specify the range by command:-</p>`
			`<p class="codebox">C:\Inetpub\AdminScript\adsutil.vbs /MSFTPSVC/PassivePortRange "8400-8420"</p>`
			`<p>Then add exception for all those ports (8400-8420 as example above). I just don't think it's a good way to add too many exceptions to firewall :-P It's just a choice; choose what suits best to yours.</p>`