FTP

cancel
Showing results for 
Search instead for 
Did you mean: 

FTP

L4 Transporter

How can I verify whether port 21 ftp traffic is being blocked by the PA 302?

17 REPLIES 17

Yes I have the ability to connect to one of our ISP's outside of the firewall.The only thing is the ftp connection I am trying to access is outside of our network so I assume you mean can I connect to it when I am oustide of our network

Not applicable

you can telnet to port 21 and see what replies you get from the FTP server and what point you lose connection. Based on the results you got, you'll be able to narrow the troubleshooting area

for example

telnet ftp.site.com 21

and issue commands

USER username

PASS password

PASV

RETR filename

QUIT

If you don't get any replies back, make sure yuo have policy that allows port 21 connection to the FTP server

if you are able to login but can't download the file, make sure you have policy for FTP application or allow high ports for FTP server

also verify that ftp client is set to use passive mode

So I should try to telnet to the ftp server at my vendors site and see what happens? I did try it through a web browser and got to the point where it asks for ou user name and password but my user did not know his credentials

I got this

**ATTENTION**

STATE AND FEDERAL STATUTES MAKE IT A CRIME TO GAIN
UNAUTHORIZED ACCESS INTO THIS COMPUTER SYSTEM.
VIOLATORS WILL BE PROSECUTED.

SYSTEM USE IS ONLY FOR AUTHORIZED BUSINESS PURPOSES.


login:

I don't think I have it blocked

running ftp from a browser will likely use an outbound port 80 rather than 21, so the results may be very different from using a browser to an ftp client.

If you are outside of your network, are you able to connect using an ftp client ?

Tom Piens
PANgurus

I did a telnet to the site and got this, if my user knew what his use name and password were we could test if he can connect

**ATTENTION**

STATE AND FEDERAL STATUTES MAKE IT A CRIME TO GAIN
UNAUTHORIZED ACCESS INTO THIS COMPUTER SYSTEM.
VIOLATORS WILL BE PROSECUTED.

SYSTEM USE IS ONLY FOR AUTHORIZED BUSINESS PURPOSES.


that output doesn't look like FTP server response, please make sure you have port 21 after the host name in the telnet command

Ex: telnet ftp.site.com 21

Sorry I missed a part when I copied it


**ATTENTION**

STATE AND FEDERAL STATUTES MAKE IT A CRIME TO GAIN
UNAUTHORIZED ACCESS INTO THIS COMPUTER SYSTEM.
VIOLATORS WILL BE PROSECUTED.

SYSTEM USE IS ONLY FOR AUTHORIZED BUSINESS PURPOSES.


login:


This is what I got with your suggestion - Ex: telnet ftp.site.com 21 (with my site info)

220-Unauthorized access to this computer is illegal

220-

220 p01dwetl17 FTP server ready.

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!