Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Fixing broken FTP in Safari Beta 2' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Fixing broken FTP in Safari Beta 2
Authored by: seven5 on Apr 23, '03 11:17:08AM

Just a clarification of what Passive Mode exactly is:

Ftp uses the standard port of 21.
Passive Mode should only be used if the user is connecting to a
NONstandard ftp port while BEHIND a firewall.

If you are not behind a firewall, you can connect to anyport
you'd like all day long with FTP. BUT if you are behind a firewall
and you try to connect to port 2048, or anything OTHER than 21,
with ftp, you won't recieve any data from the server.

If you are connecting to port 21 and you are behind a firewall,
turn off passive mode. If you are using passive mode and you
are connecting to port 21 while behind a firewall, it won't work,
just as connecting to port 2134 while behind a firewall won't
work withOUT passive mode.

Hope this clears some things up.



[ Reply to This | # ]
Fixing broken FTP in Safari Beta 2
Authored by: rickjm on Apr 23, '03 09:24:47PM

I am behind a symantec 200r firewall (Nexland OEM) and cannot connect to any NT FTP servers at all, whether passive is checked or not. Actually, I can connect, but cannot do anything else - dir or "get" just hangs. I have a feeling the NT Server is passing back the port number to use in a packet and OSX can't track the packet properly behind the NAT - anyone else having this problem? All the windows and linux machines behind the firewall connect and work just fine, BTW.

-Rick Mills
rick@jpusa.org

---
There are 10 types of people in the world; those who understand binary, and those who don't.



[ Reply to This | # ]
Fixing broken FTP in Safari Beta 2
Authored by: geoffsaulnier on Apr 24, '03 05:55:10AM

Have you guys reported all this to Apple via the Safari bug reporting thingie?
This is the kind of stuff they absolutely need to fix if they expect people to use
Safari as their browser of choice.

I wonder if they have any plans to integrate the Safari functionality into OS X
in the future...

Geoff.

---
___<br>
Geoff Saulnier - Mac, *NIX, perl, hack!!



[ Reply to This | # ]
Fixing broken FTP in Safari Beta 2
Authored by: greed on Apr 24, '03 01:07:18PM

Actually that's a little misleading. The control port isn't usually a big deal, unless the nonstandard port is blocked on the client's firewall.

FTP works on two TCP connections. A long-running control connection (usually to port 21 on the server) and a per-file data connection.

Normally, the FTP client opens a listening port on the client machine ("inbound" port, server port) and tells the server about it. If you use the old command-line FTP program, you'll have seen messages like "PORT command successful"--PORT is the command that tells the server the IP and port to contact (i.e., where on the local machine).

If you are behind a masquerading or NAT-ing firewall ("internet sharing router"), the PORT command will have the IP address from the internal network, which hopefully isn't routable. (e.g., PORT 10.0.0.1.27866 won't work.)

Passive mode means the SERVER opens a second listening port, just for that one client, and the client opens a second outbound connection to it. Instead of issuing the PORT command, the client issues the PASV command; the server's response tells the client the IP and port to use. It's called passive because the server just sits there and waits, it doesn't initiate the connection like "classic" FTP's PORT command.

PASV won't work if the SERVER is behind a firewall which forwards the control connection (port 21) through.

To get PORT to work on a firewalled client, the firewall has to be aware of the FTP protocol, as it has to re-write the control commands to correct the addresses, and forward the appropriate inbound connections. Same thing for PASV on a firewalled server.

If you have a firewalled client and a firewalled server, without special FTP support in the firewalls, you can't do FTP between those machines, neither PASV nor PORT will work.



[ Reply to This | # ]
Fixing broken FTP in Safari Beta 2
Authored by: rickjm on Apr 26, '03 02:51:31PM

Hmmmmm. I wonder where the problem is, then. If I start a command line ftp from windoze and connect to an ACTIVE server (which I think NT ftp servers are), everything works behind the firewall. I I do the same thing from linux, everything works fine. If I connect from OS/9, everythinf works fine. If I connect from OSX, it connects, but nothing works (just hangs). If the firewall isn't translating the packets properly, why does ftp work from all the other clients?

Confused.....

---
There are 10 types of people in the world; those who understand binary, and those who don't.



[ Reply to This | # ]
Fixing broken FTP in Safari
Authored by: kelton@workingps on Mar 22, '04 09:20:41PM

I also have the FTP problem with Safari -- no FTP with Safari and sometimes an FTP attempt crashes Safari if I try. Passive or not, Safari still doesn't work.



[ Reply to This | # ]