0

I'm looking for how to get FTPS working properly via FileZilla Server on an Azure VM running Windows 2012. I've opened port 990 and configured FTP over TLS in FileZilla. I have opened port 990 in both the firewall and the Azure portal interface and still cannot connect.

I'm attempting to connect using FileZilla client using FTPS login. Has anyone succeeded in configuring an FTPS server (other than IIS) on an Azure VM? I need separate user accounts and the ability to assign separate folders to save files to.

Any ideas?

Castaglia
  • 3,239
  • 3
  • 19
  • 40
joeldow
  • 101
  • 2
  • Server logs? Client logs? Packet captures, etc? We need something to go on... – EEAA Jan 04 '16 at 01:11
  • 4
    You seem to confuse SFTP with FTP over TLS. Which one do you mean? – Dominik R Jan 04 '16 at 01:28
  • Sorry for not clarifying, FileZilla doesn't appear to support SFTP, so I am trying to set up FTPS. I am not getting any logs as of yet because I think the firewall or Azure endpoints are not letting the requests through. – joeldow Jan 04 '16 at 13:26

1 Answers1

1

Too long for a comment:

Port 990 is for implicit SSL and implicit SSL is deprecated.

You should be using explicit SSL as described in RFC 4217 which will use the regular FTP port to establish a control connection, TCP 21 and then upgrade to TLS.

Opening up a single port is going to be insufficient for FTPS as the protocol is exactly like regular FTP and similarly makes do with two connections, one for the control connection and a second for the data connection.

Unless explicitly configured otherwise the second connection will be to a random unused TCP port and thus currently denied by your firewall configuration.

This problem can be solved with the use of a limited range of ports for the data connection and configuring the firewall to open these ports.

Community
  • 1
HBruijn
  • 72,524
  • 21
  • 127
  • 192