MIDRANGE dot COM Mailing List Archive



Home » MIDRANGE-L » October 2013

RE: FTP SSL ports used?



fixed

David,

Not sure if related but when we upgraded to V6R1, some of our FTPs broke, had to do the below.

Document Number: 484261471
Document Title:Disabling EPASV/EPORT in the iSeries FTP Client at R610 and above
Document Description:
At R610, the iSeries FTP client supports the EPASV (Extended Passive, EPSV) command and EPORT (Extended Port, EPRT). The FTP client defaults to this and, if the server we are connecting to does not, the FTP client will fail over to Passive mode FTP. However, in some cases, an error message is not returned. Most commonly, this is due to a firewall not allowing or supporting the EPASV/EPORT command, and the establishment of a data connection will appear to 'hang' with:

229 Entering Extended Passive Mode

In these cases, the EPASV/EPORT commands must be disabled.

The FTP client attempts data connections in the following manner:

Extended Passive
Passive
Extended Port
Port

As a result, if PORT mode is needed, the three preceding data connection types must first be toggled off. This can be done in one of two ways:

1. On a connection-by-connection basis using FTP client subcommands:

o SENDEPSV - Toggles off Extended passive
o SENDPASV - Toggles off Passive mode
o SENDEPRT - Toggles off Extended Port

2. On a system-wide basis with the use of data areas:

o CRTDTAARA DTAARA(QUSRSYS/QTMFTPEPSV) TYPE(*LGL) AUT(*USE) - disables EPASV
o CRTDTAARA DTAARA(QUSRSYS/QTMFTPPASV) TYPE(*LGL) AUT(*USE) - disables PASV
o CRTDTAARA DTAARA(QUSRSYS/QTMFTPEPRT) TYPE(*LGL) AUT(*USE) - disables EPORT with PTF SI33243 applied to the system - no ptf is needed for releases after R610.

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of Luis Rodriguez
Sent: Tuesday, October 29, 2013 11:33 AM
To: Midrange Systems Technical Discussion
Subject: Re: FTP SSL ports used?

David,

You are right. Memory fails sometimes :-) Would the service table data work in this case (WRKSRVTBLE)?

Regards,

Luis

Luis Rodriguez
IBM Certified Systems Expert - eServer i5 iSeries





Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2014 by MIDRANGE dot COM and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available here. If you have questions about this, please contact