Remove From My Forums

WHS 2011 Firewall blocking FTP connections

Question
0

Sign in to vote

I'm very unsure what is wrong...

I've setup a ftp site in IIS 7 and it is working fine within the server, but externally I cannot connect. I'm using filezilla on port 21 to xxxx.homeserver.com and the connection is timing out.

I have configured my router to accept port 21 connections and direct them to the server. I've checked the router log and can see the connection being forwarded ok.

Then I wondered if the Windows Firewall on the server was blocking it. I checked the allowed programs settings - all good. FTP Public and Private allowed.

Then in the advanced firewall settings I can see all 3 inbound settings and the 2 outbound settings are there correctly. So all should be good.

Then I turned off the Windows Firewall for both Public and Private connections and immediately I could connect.

So it's the Windows Firewall that is lying to me saying the FTP connections are allowed when it's actually blocking them.

I would prefer to have the Windows Firewall on, so any ideas on how I can either workout where and what is blocking port 21 connections in the Windows Firewall or how I can fix it please?

Many thanks,

Craig

Friday, May 18, 2012 1:04 AM

Answers

0

Sign in to vote
Hi,

Please make sure that you have enabled the "Allow Programs to communicate through Windows Firewall". Just like the figure below:

At the same time, You could look into the Advanced Settings for the Windows Firewall.

Any Update from your side, pleaes feel free to post back.

Regards,

James

James Xiong

TechNet Community Support
- Proposed as answer by James Xiong Friday, May 25, 2012 8:45 AM
- Marked as answer by James Xiong Monday, May 28, 2012 12:50 AM
Monday, May 21, 2012 3:00 AM
0

Sign in to vote
Well I've gone through the Network and Sharing Center, the Firewall and the Firewall Advanced Setting and everything is set correctly, i.e. the FTP settings are all there and enabled.

The only thing I've found that gets the FTP login to work is turning off the Firewall for Home or work networks...

This is kind of disappointing, but it works.

C
- Marked as answer by James Xiong Tuesday, May 29, 2012 12:38 AM
Monday, May 28, 2012 9:16 PM

All replies

0

Sign in to vote

Hi,

Based on the current situation, I suggest that you could turn off the Windows Firewall to verify the issue could be reproduced or not. If so, the issue could not be related to the Windows Firewall settings.

At the same time, I think you could open the “Network and Sharing Center”. Please make sure that you have turned on the file sharing on the server side and client side.

On the affected client side, please ping the server IP address to verify the return packet result (received or loss).

Regards,
James
James Xiong

TechNet Community Support

Friday, May 18, 2012 9:00 AM
0

Sign in to vote

Hi James,

When I turn off the private element of the firewall (I can't recall the actual name of it, but there are two parts to the windows firewall in the on / off settings) everything works fine, no issues at all. So it is definitely the firewall that is doing the blocking.

When I ping the server from the client I get no replies, unless that private firewall thing is turned off.

I've not looked at anyone file sharing settings in the Network and Sharing Centre on the server, I'll try that at the weekend.

Thank you.

Friday, May 18, 2012 8:17 PM
0

Sign in to vote
Hi,

Please make sure that you have enabled the "Allow Programs to communicate through Windows Firewall". Just like the figure below:

At the same time, You could look into the Advanced Settings for the Windows Firewall.

Any Update from your side, pleaes feel free to post back.

Regards,

James

James Xiong

TechNet Community Support
- Proposed as answer by James Xiong Friday, May 25, 2012 8:45 AM
- Marked as answer by James Xiong Monday, May 28, 2012 12:50 AM
Monday, May 21, 2012 3:00 AM
0

Sign in to vote
Well I've gone through the Network and Sharing Center, the Firewall and the Firewall Advanced Setting and everything is set correctly, i.e. the FTP settings are all there and enabled.

The only thing I've found that gets the FTP login to work is turning off the Firewall for Home or work networks...

This is kind of disappointing, but it works.

C
- Marked as answer by James Xiong Tuesday, May 29, 2012 12:38 AM
Monday, May 28, 2012 9:16 PM
1

Sign in to vote
Just found this reference after having the same issues. WHS 2011 was built on server 2008 and it seems dragged a pile of bugs over as well. Fixed up my problem nicely.

Why can't I access my newly created FTP site on Windows Server?

Article ID: 506
Last updated on June 23, 2011
Authored by: Rackspace Support

This article addresses a known error with Windows Firewall when creating FTP sites in all versions of Windows Server 2008

Windows Firewall Settings

If you are unable to access your newly created FTP site, this is most likely due to Windows Firewall settings. To fix this, run the following via the command line:

netsh advfirewall firewall add rule name="FTP (no SSL)" action=allow protocol=TCP dir=in localport=21

netsh advfirewall set global StatefulFtp enable

You can find more information about this here: http://blogs.iis.net/jaroslad/archive/2007/09/29/windows-firewall-setup-for-microsoft-ftp-publishing-service-for-iis-7-0.aspx

Once you've done this, you should now have access to your site.
- Proposed as answer by turls88 Sunday, July 7, 2013 11:39 PM
Wednesday, October 10, 2012 4:11 AM
0

Sign in to vote
i know its an old topic, but all I did was add a new rule in the incoming firewall rules for another rule called ftp, set it to port 21 and left everything else as is, opened it right up, left everything else intact
- Proposed as answer by TallButManageable Tuesday, January 28, 2020 8:36 PM
Saturday, September 21, 2013 7:33 PM

Answered by:

WHS 2011 Firewall blocking FTP connections

Question

Answers

All replies

Why can't I access my newly created FTP site on Windows Server?

Windows Firewall Settings