Firewall – TCP port > 1023 or TCP port > 1024 for inbound passive ftp traffic

firewallftpiisport

From Windows Firewall with Advanced Security

Inbound Rules window shows the following setting:

enter image description here

By right-clicking the selected row above and choose Properties, we have

enter image description here

The Properties window says that

An inbound rule to allow Passive FTP
traffic for Internet Information
Services (IIS) [TCP > 1023]

Now let us compare with the following…

IIS Manager Help

enter image description here

It says that

Specifies the port range for passive
connections used for data channel
connections. The valid range for ports
is 1025 through 65535. (Ports from 1
through 1024 are reserved for use by
system services.)

I am confused which one is the correct one?

Best Answer

According to the Internet Assigned Numbers Authority, use ports starting at 1024 through 65535. Ports below 1024 are reserved as Well Known Ports:

The Well Known Ports are assigned by the IANA and on most systems can only be used by system (or root) processes or by programs executed by privileged users.

From Windows Firewall with Advanced Security

IIS Manager Help

Best Answer

Related Solutions

Windows – How to make WinXP bind to ports other than 1025-5000 for outgoing TCP connections

Ftp – Passive mode for FileZilla FTP isn’t working

Related Topic