Windows 2012 Essentials FTP server works with firewall off, not on


  • We configured a FTP server in IIS on 2012 Server Essentials, and enabled the FTP rules in the windows firewall to allow FTP, however the FTP server will not work unless the firewall is turned off.

    Note: If I add a generic firewall rule for port 21 to allow all traffic, then try to access the FTP server externally, I am prompted for a login-but the login hangs/times out.
    Wednesday, September 11, 2013 9:43 PM


  • Hi,

    In general, FTP uses TCP port 20 as date port and TCP port 21 as command port. However, the data port is not always on port 20 and it depends on the mode of FTP connection.

    In addition, FTP can be run in active or passive mode. Would you please tell us which mode you were running?

    If the client is behind a firewall and unable to accept incoming TCP connections, Passive mode would be a better option. In these scenario, you need to set a passive port range as a passive mode FTP uses port 21 and a data port above 1023 port.

    You can refer to the video and links below:

    How to install and configure FTP on IIS 8 in Windows Server 2012

    File Transfer Protocol

    Active FTP vs. Passive FTP, a Definitive Explanation

    Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.

    Best regards,

    Susie Long

    Thursday, September 12, 2013 3:25 PM