Our Products:   CompleteFTP  edtFTPnet/Free  edtFTPnet/PRO  edtFTPj/Free  edtFTPj/PRO
0 votes
9.8k views
in General by (300 points)
I'm trying out your edtftpj-pro-1.2.8 library; specifically to a new eBusiness partner that is using Sterling Commerce Enterprise Gateway (FTPS server).
I am using the example program that came with the library. No server validation, explicit FTP over SSL using port 5555 as control (and specific port range they told us to open up on our firewall in the 55556-55756 range for data). They also use Passive mode.
I can connect, negotiate SSL on control channel successfully and login successfully, but when a "DIR" is done (which requires data channel) - the program it times out and exits.
We saw in a packet sniffer (and in the detail debug log from the example program) that their PASV returns a NEW IP address with a port number in the range they indicated. The packet sniffer shows that the example program tries to send to this new IP address until it times out. No response ever come back.
SO - it looks like they have 2 FTPS servers one is a front-end to the other???

Has anyone ever encountered this? How is EDTFTPj supposed to handle this scenario? Or what sequence of steps are required to communicate successfully with a company using this dual FTPS server stuff?

Thanks
Dave

2 Answers

0 votes
by (162k points)
Probably the server has a number of IP addresses and for some reason they are sending the wrong one back.

edtFTPj/PRO does cater for this situation - use setAutoPassiveIPSubstitution(true) to always force the use of your original server IP address rather than the one sent in PASV.

Hopefully this will work for you.

I'm trying out your edtftpj-pro-1.2.8 library; specifically to a new eBusiness partner that is using Sterling Commerce Enterprise Gateway (FTPS server).
I am using the example program that came with the library. No server validation, explicit FTP over SSL using port 5555 as control (and specific port range they told us to open up on our firewall in the 55556-55756 range for data). They also use Passive mode.
I can connect, negotiate SSL on control channel successfully and login successfully, but when a "DIR" is done (which requires data channel) - the program it times out and exits.
We saw in a packet sniffer (and in the detail debug log from the example program) that their PASV returns a NEW IP address with a port number in the range they indicated. The packet sniffer shows that the example program tries to send to this new IP address until it times out. No response ever come back.
SO - it looks like they have 2 FTPS servers one is a front-end to the other???

Has anyone ever encountered this? How is EDTFTPj supposed to handle this scenario? Or what sequence of steps are required to communicate successfully with a company using this dual FTPS server stuff?

Thanks
Dave
0 votes
by (300 points)
I tried the method in your example program and it works!
Thanks - we will definitely purchase a license!

Dave

Categories

...