Hi,
A bit of a complex situation here but I'll try to simplify it as much as I can.
Environment:
2x servers (SVR01 & SVR02) sitting behind an external firewall. Both with the same FTP config.
External Public IP mapped to internal IP. All Ports are forwarded (DNAT'd).
FTP installed configured with IIS 7.5.
- FTP ports:
Incoming = 990
Outgoing = 989
FTP access is IP restricted to 5 public (static) source IP addresses.
SSL enabled, using a wildcard certificate.
Problem is, out of the 5 source IP addresses allowed access, we have one specific having an a problem connecting to FTP. And to make it even more bizarre, they can connect to SVR01, but not SVR02.
They get past the firewall, connect to SVR02 they get the below, which is odd because SVR01 has the exact same config. Yes, i have googled that error below and most say the certificate needs to be configured at both the global (server ) level and FTP site level in IIS, which has been done.
"Error reading secure data from server. Connection Lost"
All other Source IP's can connect to both SVR01 and SVR02 without any issues whatsoever. I'm completely lost for options here.
They are using Core FTP client as all the newer clients aren't compatible with IIS 7.5 when it comes to file transfer.
Any help appreciated.
Thanks





