Question : Which is safest, PASV or ACTIVE FTP for my Windows 2003 server?

I have an FTP setup on my WIndows 2003 box and I'm at the point of configuring my router to allow certain ports. From what I read, I have to open up ports above 1023 but that doesn't sound safe at all. Which method is better PASV or ACTIVE and what do I have to open up on my firewall for this. I'm really nervous about opening up a bunch of ports, but still need my FTP to work from anyone on the outside, regardless of what FTP client or OS they are using.

Answer : Which is safest, PASV or ACTIVE FTP for my Windows 2003 server?

you dont have to open up ports for ACTIVE - you only have 21 open. the > 1023 port issue is the originating port from the client.

Active FTP :
command : client >1023 -> server 21
data : client >1023 <- server 20

PASV ftp means you do have to open up ports > 1023 so that the client can initiate both sessions.

Passive FTP :
command : client >1023 -> server 21
data : client >1023 -> server >1023

So not only is ACTIVE easier to set up - but with less port issues, it would be more secure. It is just harder for clients to deal with behind firewalls.

Random Solutions

I need assistance Accessing the Active Directory through my ASP.Net page from IIS.

Unity Connection MWI off

error problem org.apache.jasper.JasperEx<wbr />ception: /test3.jsp(3,8) The value for the useBean class attribute teska.test2.TestMe is invalid.

XP domain clients can't browse network, but can ping by name or IP address

Sent and Received packets bandwidth

How to properly query a domain for all DNS records

Why Am I Only Getting 100Mbps On A Gigabit Switch?

Setting up MSTP on HP procurve Ring Topology how to set priority and path cost

Cisco unity voice administartion page options