Information
This article describes the NetScaler behavior when load balancing passive FTP.
When NetScaler receives port information from the FTP server with ports to be used in passive mode, the NetScaler does not pass the same ports to the client. Instead, NetScaler uses its own range and it can be modified in Global Settings > FTP Port.
Before the change NetScaler advertises ports >= 60000 to the client and client uses this range:
Client: 192.168.2.1??
NetScaler: 192.168.2.112??
09:04:06.216186 IP 192.168.2.1.57357 > 192.168.2.112.60001: S 3502908648:3502908648(0) win 8192 <mss 1460,nop,wscale 8,nop,nop,sackOK>??
09:04:06.257237 IP 192.168.2.112.21 > 192.168.2.1.57356: . ack 104 win 8087??
09:04:09.222582 IP 192.168.2.1.57357 > 192.168.2.112.60001: S 3502908648:3502908648(0) win 8192 <mss 1460,nop,wscale 8,nop,nop,sackOK>??
09:04:15.216874 IP 192.168.2.1.57357 > 192.168.2.112.60001: S 3502908648:3502908648(0) win 8192 <mss 1460,nop,nop,sackOK>??
The following command is used to change the port range:
set ns param -ftpPortRange 10000-10009??
After the change:
09:11:49.705375 IP 192.168.2.1.57457 > 192.168.2.112.10000: S 3096374843:3096374843(0) win 8192 <mss 1460,nop,wscale 8,nop,nop,sackOK>??
09:11:49.745929 IP 192.168.2.112.21 > 192.168.2.1.57455: . ack 83 win 5840??
09:11:52.699761 IP 192.168.2.1.57457 > 192.168.2.112.10000: S 3096374843:3096374843(0) win 8192 <mss 1460,nop,wscale 8,nop,nop,sackOK>??
09:11:58.705559 IP 192.168.2.1.57457 > 192.168.2.112.10000: S 3096374843:3096374843(0) win 8192 <mss 1460,nop,nop,sackOK>??
Now client uses ports >= 10000.
In the following capture you can see in the FTP packet sent from NetScaler to client, NetScaler uses the range that is configured in global settings:??
1293 63.814218169 192.168.2.112 192.168.2.1 FTP 151 Response: 227 Entering Passive Mode (192,168,2,112,39,18) ... File Transfer Protocol (FTP) 227 Entering Passive Mode (192,168,2,112,39,18)\r\n Response code: Entering Passive Mode (227) Response arg: Entering Passive Mode (192,168,2,112,39,18) Passive IP address: 192.168.2.112 (192.168.2.112) Passive port: 10002 Once port range is modified it doesn't affect FTP ports 20 & 21, FTP vserver uses the same ports 20/21 for FTP protocol: 1989 79.170445373 192.168.3.100 192.168.3.249 FTP-DATA 1562 FTP Data: 1448 bytes ... Transmission Control Protocol, Src Port: 20 (20), Dst Port: 10004 (10004), Seq: 5793, Ack: 1, Len: 1448
Supporto Citrix
Traduzione automatica
Questo articolo ??¨ stato tradotto da un sistema di traduzione automatica e non ??¨ stata valutata da persone. Citrix fornisce traduzione automatica per aumentare l'accesso per supportare contenuti; tuttavia, articoli automaticamente tradotte possono possono contenere degli errori. Citrix non ??¨ responsabile di incongruenze, errori o danni derivanti dell'uso di articoli automaticamente tradotte.
Citrix技術支持
自動翻譯
這篇文章被翻譯由一個自動翻譯系統,並沒有受到人們的審查。 Citrix提供自動翻譯,增加獲得支持的內容;但是,自動翻譯的文章可能可以包含錯誤。思傑不負責不一致,錯誤或損壞因使用自動翻譯的文章的結果。
Поддержка Citrix
Tradução automática
Эта статья была переведена автоматической системой перевода и не был рассмотрен людьми. Citrix обеспечивает автоматический перевод с целью расширения доступа для поддержки контента; Однако, автоматически переведенные статьи могут может содержать ошибки. Citrix не несет ответственности за несоответствия, ошибки, или повреждения, возникшие в результате использования автоматически переведенных статей.
시트릭스 지원
자동 번역
이 문서 자동 번역 시스템에 의해 번역 된 사람들에 의해 검토되지 않았다. 시트릭스는 컨텐츠를 지원하기 위해 접근을 높이기 위해 자동 번역을 제공합니다; 그러나, 자동으로 번역 기사 오류를 포함 할 수있다. 시트릭스는 자동으로 번역 된 기사의 사용의 결과로 발생하는 불일치, 오류 또는 손해에 대해 책임을지지 않습니다.