Configure Internet Explorer to use FTP Passive Mode

FTP supports two modes:

Standard mode FTP clients first establish a connection to TCP port 21 on the FTP server. This connection establishes the FTP command channel. The client sends a PORT command over the FTP command channel when the FTP client needs to receive data, such as a folder list or file. The PORT command contains information about on which port the FTP client receives the data. In PORT Mode, the FTP server always sends data from TCP port 20. The FTP server must open a new connection to the client when it sends data.

Passive mode FTP clients also start by establishing a connection to PCT port 21 on the FTP server to create the control channel. When the client sends a PASV command over the command channel, the FTP server opens an ephemeral port (between 1024 and 5000) and informs the FTP client to request data transfer from that port. The FTP server responds to the request by using the ephemeral port as the source port for data transfer. When this occurs, the FTP server does not need to establish a new inbound connection to the FTP client.

To change the Internet Explorer FTP client mode:

1. Start Internet Explorer.
2. Click Internet Options on the Tools menu.
3. Click the Advanced tab.
4. Click Enable Folder View for FTP sites.

Internet Explorer is an Active mode FTP client when you select the Enable Folder View for FTP sites option (no matter what the Use Passive FTP Option says).

Firewall administrators may not want to use PASV FTP servers because the FTP server can open any ephemeral port number. Although Microsoft Internet Information Server (IIS) 4.0 and Microsoft Internet Information Server 5.0 use the default ephemeral port range of 1024 through 5000, many FTP servers are configured with an ephemeral port range of 1024 through 65535. Firewall configurations that allow full access to all ephemeral ports for unsolicited connections may be considered unsecured.

You can configure both IIS 4.0 and IIS 5.0 to allow the ephemeral port range of 1024 through 65535.

For additional information about problems that you may have when you try to connect to TCP ports above 5000, click the number below to view the article in the Microsoft Knowledge Base:

Q196271 Unable to Connect from TCP Ports Above 5000

Share on Google Plus

About Vittorio Pavesi

    Blogger Comment
    Facebook Comment

1 comments:

Anonymous said...

Vittorio Said:
[..] Internet Explorer is an Active mode FTP client when you select the Enable Folder View for FTP sites option (no matter what the Use Passive FTP Option says) [..]

I'm not sure this is really true, could you please check it..