[CentOS] FTPS setup problem

Guy Boisvert boisvert.guy at videotron.ca
Fri Dec 19 23:29:15 UTC 2008


John R Pierce wrote:
> 
> I don't know if you can do that with FTPS...    FTP uses a seperate 
> dynamic port for the data socket, and the mode this port is assigned is 
> at the whim of the *client* software, it can either be PORT or PASSIVE 
> mode, this makes NAT address translation of FTP a real mess.    AFAIK, 
> FTPS (ftp over ssl) does much the same.
> 
> 
> I quote from Wikipedia...
> 
> 
>     The firewall problem
> 
> Because FTP <http://en.wikipedia.org/wiki/File_Transfer_Protocol> is a 

[...]

> cannot decrypt it). Therefore, in many firewalled networks, clear FTP 
> connections will work while FTPS connections will either completely fail 
> or require the use of passive mode (assuming all ports >= 1024 to the 
> server are unfiltered).
> 

Well John, i can't even get it working locally on the same subnet (and 
no, the server doesn't use firewalling)!  I'm not even at the firewall 
access level!


Thanks for the pointer anyway.


Regards,


Guy Boisvert, ing.
IngTegration inc.


More information about the CentOS mailing list