Ping a Specific Port

Question

zippy

Asked: 2012-04-12 13:34:58 +0800 CST2012-04-12 13:34:58 +0800 CST 2012-04-12 13:34:58 +0800 CST

What is the difference between active and passive FTP?

772

What is the difference between active and passive FTP?

note: I think this would be useful as a community wiki question. Also, I'm hoping someone can come up with a clear concise answer like this question: How does IPv4 Subnetting Work?

1 Answers

Voted

Lucas Kauffman · Answer 1 · 2012-04-12T13:43:56+08:00

Active and passive are the two modes that FTP can run in. FTP uses two channels between client and server, the command channel and the data channel, which are actually separate TCP connections. The command channel is for commands and responses, the data channel is for actually transferring files. It's a nifty way of sending commands to the server without having to wait for the current data transfer to finish.

In active mode, the client establishes the command channel (from client port X to server port 21^(b)) but the server establishes the data channel (from server port 20^(b) to client port Y, where Y has been supplied by the client).

In passive mode, the client establishes both channels. In that case, the server tells the client which port should be used for the data channel.

Passive mode is generally used in situations where the FTP server is not able to establish the data channel. One of the major reasons for this is network firewalls. While you may have a firewall rule which allows you to open up FTP channels to ftp.microsoft.com, Microsoft's servers may not have the power to open up the data channel back through your firewall.

Passive mode solves this by opening up both types of channel from the client side. In order to make this hopefully clearer:

Active mode:

Client opens up command channel from client port 2000^(a) to server port 21^(b).
Client sends PORT 2001^(a) to server and server acknowledges on command channel.
Server opens up data channel from server port 20^(b) to client port 2001^(a).
Client acknowledges on data channel.

Passive mode:

Client opens up command channel from client port 2000^(a) to server port 21^(b).
Client sends PASV to server on command channel.
Server sends back (on command channel) PORT 1234^(a) after starting to listen on that port.
Client opens up data channel from client 2001^(a) to server port 1234^(a).
Server acknowledges on data channel.

At this point, the command and data channels are both open.

^(a)Note that the selection of ports on the client side is up to the client, as the selection of the server data channel port in passive mode is up to the server.

^(b)Further note that the use of port 20 and 21 is only a convention (although a strong one). There's no absolute requirement that those ports be used although the client and server both have to agree on which ports are being used. I've seen implementations that try to hide from clients by using different ports (futile, in my opinion).

Original answer from stackoverflow

What is the difference between active and passive FTP?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?