Microsoft KB Archive/810639

= FIX: FTP passive mode support for firewall scenarios =

Article ID: 810639

Article Last Modified on 11/21/2006

-

APPLIES TO

 Microsoft Internet Information Services 5.0, when used with:  Microsoft Windows 2000 Advanced Server

 Microsoft Windows 2000 Advanced Server

 Microsoft Windows 2000 Advanced Server

 Microsoft Windows 2000 Service Pack 3</li></ul>

 Microsoft Windows 2000 Service Pack 2</li></ul>

 Microsoft Windows 2000 Service Pack 1</li></ul> </li></ul>

-

<div class="notice_section">

CPR - Win2000 - Hotfix in SP4

<div class="notice_section">

<div class="notice_section">

Important This article contains information about how to modify the registry. Make sure to back up the registry before you modify it. Make sure that you know how to restore the registry if a problem occurs. For more information about how to back up, restore, and modify the registry, click the following article number to view the article in the Microsoft Knowledge Base:

256986 Description of the Microsoft Windows registry

<div class="symptoms_section">

SYMPTOMS
If you must use the Microsoft FTP server (included with Internet Information Services (IIS) 5.0) in passive mode between firewalls, you can fix the range of TCP ports that the server uses for the data channel.

<div class="resolution_section">

RESOLUTION
A supported feature that modifies the default behavior of the product is now available from Microsoft, but it is only intended to modify the behavior that this article describes. Apply it only to systems that specifically require it. This feature may receive additional testing. Therefore, if you are not severely affected by the lack of this feature, we recommend that you wait for the next Microsoft Windows 2000 service pack that contains this feature.

To obtain this feature immediately, download the feature by following the instructions later in this article or contact Microsoft Product Support Services. For a complete list of Microsoft Product Support Services telephone numbers and information about support costs, visit the following Microsoft Web site:

http://support.microsoft.com/contactus/?ws=support

The English version of this hotfix has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time tool in Control Panel. <pre class="fixed_text">  Date         Time   Version        Size     File name ---  05-Dec-2002  14:34  5.0.2195.6154  118,032  Ftpsvc2.dll 13-Nov-2002 14:36  5.3.10.0         4,096  Spmsg.dll 05-Dec-2002 14:42                   7,409  Q810639.cat

<div class="moreinformation_section">

Warning Serious problems might occur if you modify the registry incorrectly by using Registry Editor or by using another method. These problems might require that you reinstall your operating system. Microsoft cannot guarantee that these problems can be solved. Modify the registry at your own risk.

The code change in this hotfix honors a registry setting. To define the port range that you want the FTP service to use, follow these steps: <ol> Start Registry Editor.</li> Locate the following registry key:

</li> Add a value that is named PassivePortRange of type REG_SZ.

Note If the PassivePortRange value exists, the range that FTP will validate is from 5001 to 65535. However, you can use either a range or a single number.</li></ol>

<div class="references_section">