User profile for user: Ricky Murphy
Ricky Murphy Author
User level: Level 1
3 points

Cannot connect to FTP when firewall is turned on

I connect to my FTP server routinely so I ticked the FTP access under 'services' so that FTP is allowed under the firewall. However, when I try to access my FTP using Dreamweaver, browser or FTP software like Transit or CuteFTP with the firewall turned on, I cannot access the site. When the firewall is turned off, I can access just fine.

I use the "passive" "use firewall" and any other option available within the software in an attempt to access the FTP. I even tried with the PASV box checked and unchecked under 'proxies' in the network properties.

Is there some setting I am forgetting? How can I access my FTP with the firewall turned on?

Thanks.

MacBook Pro, Mac OS X (10.4.8)

Posted on Feb 22, 2007 10:44 AM

Reply
14 replies
User profile for user: BDAqua
BDAqua
User level: Level 10
250,259 points

Feb 22, 2007 12:17 PM in response to Ricky Murphy

Sorry, sometimes that file needs Trashing, rebooting and setting up Sharing again, but it doesn't "appear" to be the problem here.

Is there a Router involved perhaps that has Ports blocked?

Also, passive ftp not only uses Port 21, but needs some port above Port #1023 for communication...
http://slacksite.com/other/ftp.html

Might try Little Snitch...
http://www.obdev.at/products/littlesnitch/index.html
to see what Port it/they are trying to use, and open that.

Not sure why I have no trouble using Passive ftp with my Firewall on, but I use TransmitX, though I think I've tried others OK.
Reply
User profile for user: Ricky Murphy
Ricky Murphy Author
User level: Level 1
3 points

Feb 23, 2007 9:11 AM in response to BDAqua

I tried opening ports 20, 22, 1023 - 1026 with no luck. Little Snitch was not really helpful because it did not tell me what ports Transmit or Dreamweaver were using.

I also tried deleting the preference file for the firewall and that did not help either.

When I carefully looked at the programs when they are trying to connect, I discovered that they are connecting, but they cannot retrieve the list of folders when the firewall is on. In other words, the username and password is passed, but not the folder information - if that makes sense.

Does this help?

Reply
User profile for user: philsmith_
philsmith_
User level: Level 3
854 points

Feb 24, 2007 2:48 PM in response to Ricky Murphy

Hi, I'm dealing with this in another thread. I'll let you know if I come up with an answer. Bottom line is, even if you use passive mode to ftp to a server which does not accept it, you will be in active mode. That means the server will try to open a socket to you on some other port, either random or one more than the port used for the connection socket. Your firewall will block this new connection.

There are a series of rules for the firewall. If I can get it to accept connections from port 20 (not to, but from) then active ftp will work. But there seems to be no way to do this from OSX. There is a unix way, but then the kernel memory doesn't match the preferences file and OSX throws the equivalent of a hissy fit. There may be no way around it, but I'm looking into it.

-Phil
Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Cannot connect to FTP when firewall is turned on

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up