Main menu

Windows 2003 Server FTP and Firewall Passive port range tweak

01 Jul
Published by Mark W. Breneman

On Windows 2003 Server with IIS6

To Enable Direct Metabase Edit
Open the IIS Microsoft Management Console (MMC).
Right-click on the Local Computer node.
Select Properties.
Make sure the Enable Direct Metabase Edit checkbox is checked.
Configure PassivePortRange via ADSUTIL script
Click Start, click Run, type cmd, and then click OK.
Type cd Inetpub\AdminScripts and then press ENTER.
Type the following command where the range is specified in "..". cscript.exe adsutil.vbs set /MSFTPSVC/PassivePortRange "5001-5201"
Restart the FTP Publishing Service.
You'll see the following output, when you configure via ADSUTIL script:

Microsoft (R) Windows Script Host Version 5.6
Copyright (C) Microsoft Corporation 1996-2001. All rights reserved.

PassivePortRange : (STRING) "5001-5201"

Add each port to the Windows Firewall
Click Start, click Control Panel, open Windows Firewall, and select the Exceptions tab.
Click the Add Port button.
Enter a Name for the Exception and the first number in the port range.
Click TCP if not already selected and click OK.
Repeat for each port in the range - for large ranges see the end of the document.
Enable the Windows Firewall on the General Tab.

To add a range of ports to Windows Firewall from the Command Line

Click Start, click Run, type cmd, and then click OK.
Type in the following where the range is specified in ( ) and the name of the firewall entry is in " ".
FOR /L %I IN (5001,1,5201) DO netsh firewall add portopening TCP %I "Passive FTP"%I
Each port in the range will be added with an "OK" confirmation.

This info was taken directly from: http://www.newagedigital.com/cgi-bin/newagedigital/articles/ms-firewall-... I post this here on my blog as my personal reference.

Category 

Server

Add new comment

Filtered HTML

  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <blockquote> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.