On Tue, Feb 22, 2000 at 04:50:31PM -0500, Jeff Hubbs wrote:
> Okay - then why does FTPing with a browser work through our proxy server but
> FTP clients don't, no matter how we configure them with proxy server info?
> (granted, you probably aren't in a position to answer that, but we've never
> received a satisfactory answer from the people who run our proxy server
> either)
Oh that's simple...
Most stock ftp clients default to "port mode" while most browser
based ftp clients default to "passive mode". If you are using a fairly
recent version of an ftp client, try typing "passive" right after connecting
and logging in or running the command "pftp" instead of "ftp" (that's
passive ftp).
In "port mode", the ftp server must be able to connect back to the
client on the client specified port in order to transfer data. That
data connection includes things like directory listings as well as getting
and putting files. Most filtering firewalls and a lot of proxy firewalls
block these sorts of connections.
In "passive mode", the ftp client makes all the connections to the
server and the server just listens for connections. The server never needs
to connect back to the client for any data connections.
There is a lot of history behind passive vs port mode and some
really WEIRD design decisions for those two modes. The RFC actually
allows for a "three body transaction" where a client establishes two
control connections to two separate servers. It uses passive to one
server to get a server port and issues a port command to the other
server with the results from the passive command. It can then issue
a "RETR" command (get) to one server and a "STOR" command to the other
server. The file is then transferred directly between the two servers
without going through the client! Do any ftp clients actually impliment
this? Not that I've ever seen. But that's WHY there is two modes.
There ARE some servers which do not respond properly to passive
mode (mostly, they are also behind very restrictive firewalls). You'll
find that you won't be able to talk to them through your firewall at all,
since your firewall is blocking port mode connections and their firewall
is blocking passive mode connections. You loose.
> - Jeff
> > -----Original Message-----
> > From: Michael H. Warfield [mailto:">mhw@wittsend.com]
> > Sent: Tuesday, February 22, 2000 4:42 PM
> > To: Jeff Hubbs
> > Cc: ">ale@ale.org
> > Subject: Re: [ale] FTPing with a browser
> >
> >
> > On Tue, Feb 22, 2000 at 04:43:17PM -0500, Jeff Hubbs wrote:
> > > Can someone explain what is actually happening when one
> > tries FTP with a Web
> > > browser? Is the browser actually doing HTTP and a
> > conversion takes place on
> > > the server side? What's the real story?
> >
> > No. It understands the ftp protocol and is acting like an
> > ftp client.
> >
> > > - Jeff
> >
> > Mike
> > --
> > Michael H. Warfield | (770) 985-6132 | ">mhw@WittsEnd.com
> > (The Mad Wizard) | (770) 331-2437 |
> > http://www.wittsend.com/mhw/
> > NIC whois: MHW9 | An optimist believes we live in
> > the best of all
> > PGP Key: 0xDF1DD471 | possible worlds. A pessimist is
> > sure of it!
> >
--
Michael H. Warfield | (770) 985-6132 | ">mhw@WittsEnd.com
(The Mad Wizard) | (770) 331-2437 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
--
To unsubscribe: mail ">majordomo@ale.org with "unsubscribe ale" in message body.