|
|
|
|
|
A handful of sites have requested the ability to run IIS FTP and MOVEit DMZ FTP on the same computer on the same port (usually 21). The only way that this configuration is possible is if the computer in question has multiple IP addresses. One reason people do this is to address a legacy situation which requires them to maintain an existing store of non-secure users on the same computer that MOVEit DMZ is installed. (So far, this has only happened when a third-party hosting service is involved.) Another reason people do this is to use IIS FTP as a way to access the log files, backup files and other data stored locally on a MOVEit DMZ server.
In this situation, MOVEit DMZ binds to the port on one IP address (usually the main IP address) and IIS FTP binds to the port on the other IP address. This is not how either FTP server behaves by default, however. Instead, both IIS FTP and MOVEit DMZ FTP like to bind particular ports to ALL IP addresses available on a system (i.e. "0.0.0.0") . There is a rather obscure setting in IIS to turn this behavior off under IIS FTP and there is an equally obscure setting in MOVEit DMZ FTP to convince our server to do likewise. The remainder of these instructions are concerned with the actual procedure required to set and test these values.
Run the "Internet Services Manager" from the Start menu. For Windows Server 2008, use the "Internet Information Services (IIS) 6.0 Manager" shortcut. Open the Properties panel for your FTP site. On the "FTP Site" tab, change the IP Address from "(All Unassigned)" to one of the specific IP addresses on your machine. Apply/OK changes and then close the Internet Services Manager.