D-Link Forums
The Graveyard - Products No Longer Supported => DNS-323 => D-Link Storage => Beta code! => Topic started by: usmarine0622 on August 13, 2009, 06:19:46 AM
-
This is a newbie question but I can't seem to figure it out. when you set your ftp server to ONLY accept SSL/TLS connections what's the command you have to use. normally it's ftp:// but that doesn't work with ONLY accept SSL/TLS connections so what do you have to use? Does it matter what port you open?
-
does not matter because it still does not work... or at least i can not get it to work and NO ONE will answer the question for it to work.
-
oh ok at least im not the only one
-
You'd need a client that supports secure FTP (http://en.wikipedia.org/wiki/SSH_file_transfer_protocol). This is a relatively rare setup and afaik Firefox (or IE for that matter) doesn't support it out of the box. This add-on seems to be what you are looking for (https://addons.mozilla.org/en-US/firefox/addon/684), or you can try FileZilla, which is a free and great FTP/FTPS client.
-
DNS-323 doesn't support Secure FTP (SFTP) connections. Install good FTP Client (e.g. FileZilla) and configure it to use FTP over explicit TLS/SSL (FTPES). Works perfectly to me.
-
ok thanks guys
-
thanks for the info i tried what everyone said but still gives this error :
Command: MLSD
Error: Connection timed out
Error: Failed to retrieve directory listing
im using filezilla and flashfxp both do not work
dns323 settings....
FTP Server Status :
Status Started
Port 21
Max. User 3
Flow Control Unlimited
Idle Time 2
Client Language Western European
SSL/TLS connection Yes
Passive Mode 55536~55663
router settings
forwarded udp ports 55536~55663.
anything else i need to do?
-
Just forward TCP ports not UDP.
I did this, and FTPS works fine for me.
-
i found the problem and it is a dumb one. i have to put the ip everytime it changes which is stupid because my ip could change 3 times in one day.
so can d-link please make a way to get the ip automatically?
i do have a ddns but it is not in the list on the dns-323.
Thanks to all who answered mine and everyone elses questions.
-
If you have a dynamic domain name already, then you just need to use that when connecting from your FTP client instead of the IP address.
Instead of using ftp://12.34.56.78, you would use ftp://joeblowshomeftp.net (or whatever you chose to list your IP as with your dynamic domain name provider).
-
yes i do that already.. the problem is for tls/ssl. in the ftp options for the dns323 you have to put in the external ip address. i would like it to auto detect my ip, instead of me putting it in. its only in v1.08beta.
it would be nice if i can put my ddns instead of numbers.
-
No, you don't need to do that...it's optional. I think that field might be there for those that don't want to forward their passive port range through the router?
Anyhow, I don't have that box checked, but I do forward the 55536-55663 range to the internal address of my DNS-323 (in addition to forwarding the main, active FTP port, in my case 1023, to the DNS-323's internal port of 21), and I also use a dynamic DNS name to connect to the DNS-323 externally, and it works just fine.
-
anything other then my ip in the box it does not work. i have to have my current ip in there.
i unchecked that box and tried with no luck. so i need it.
i do forward 55536-55663 and my ftp port to the local ip of the dns323
also anyone that connects to my uses my ddns.
-
Hmmm, sounds like you're configured just like me, and mine's working fine. You're also using FW 1.08b5?
What FTP client? You're using FTPS/FTPES, not SSH over FTP/SFTP, right? Passive mode?
I'm using Filezilla, default transfer mode (i.e. not passive), FTPS.
-
-1.08 not beta 5
-flashfxp, filezilla
flashfxp auth tls and yes passiv
filezilla ftpes and passiv
dns323 does not support ftps(implicit)
the problem is that the ftp client is trying to "talk" to my 323 to its local ip. that is why i need to have that option on and pointed to my current ip. im not even sure how yours is working, lol
when i turn it on both ftp clients work.
any ideas? im lost at this point.
-
Couldn't tell you why yours isn't working, but I can tell you that, if I disable port forwarding of the 55536-55663 range through the firewall and on to my DNS-323, when I try to connect with Filezilla, FTPES, active or passive mode, Filezilla gives an error: "Server sent passive reply with unroutable address. Using server address instead."
If I turn right back around and re-enable the port forwarding on that range, it works perfectly fine.
This was the whole problem in the last two FW versions, D-Link didn't bother to let anyone know what passive port range needed to be forwarded, along with whatever traditional FTP port you chose to use, to allow the SSL/TLS communication to work.
You are still forwarding your active FTP server port through the firewall in addition to this passive port range, right?
-
yep port 21 forwarded to the 323. and that range of ports are forwarded also.
oh well it works now i just have to keep changing the ip... i hope dlink makes a quick fix for it.
thanks for your help.