Opened 20 years ago

Last modified 20 years ago

#744 closed Bug report

Non-passive IP address not forced for SSL/TLS connections

Reported by: dramatools Owned by:
Priority: normal Component: Other
Keywords: Cc: dramatools, Tim Kosse
Component version: Operating system type:
Operating system version:

Description

The IP address set in "Edit -> Settings -> Connection
-> Firewall Settings -> Use the following IP address
for non-passive transfers" is not relayed to the server
for SSL/TLS connections, making active connections
impossible through NAT firewalls. The remote system
attempts to open the data channel to the NAT host
(which is, of course, unreachable) instead.

Logfile attached. In the transcript, 10.10.1.1 is a
placeholder for the public server (it isn't NAT'ed).
172.20.2.61 is the client located by a NAT router.

Attachments (1)

transcript.txt (3.5 KB ) - added by dramatools 20 years ago.
Transcript of FTP/TLS session.

Download all attachments as: .zip

Change History (2)

by dramatools, 20 years ago

Attachment: transcript.txt added

Transcript of FTP/TLS session.

comment:1 by Tim Kosse, 20 years ago

This bug report has been closed due to inactivity and has possibly
already been solved.

You can reopen this report if the issue still exists in the
latest version of FileZilla (Server).

Note: See TracTickets for help on using tickets.