On Wed, 17 Oct 2007 12:38:12 -0500, Chase, John <[EMAIL PROTECTED]> wrote: >Note that the "well-known port" in either case is for the "control" >connection; the "data" connection is "randomly" assigned in either case.
The "randomly" part is often the cause of failure of secure ftp through firewalls. They cannot see the PASV on the control connection because it is encrypted and then fail to open the needed holes. If you have this problem, use PassivePortRange to identify the range you would like the FTP server to use for PASV, and update your firewall rules accordingly. (Those ports esentially become "well-known" by the firewall.) Alan Altmark z/VM Development IBM Endicott ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
