Cannot connect to FTP site through HTTP proxy
Moderator: Project members
Cannot connect to FTP site through HTTP proxy
I installed Filezilla on a machine behind a firewall. Access to HTTP and FTP is only possible through an HTTP proxy.
I configured Filezilla to use the HTTP proxy. It fails. If I use Internet Explorer with an ftp:// URL, it works.
From an Ethereal dump, I saw that Filezilla sends CONNECT <site name>:21 to the proxy, while IE sends GET ftp://<site name>/ . The proxy then sends the 200 OK reply to IE, while Filezilla gets a 302 Redirected (the URL to which the request is redirected, browsed with IE, says that proxy blocked access).
So, maybe Filezilla should use a plain GET, or allow the user to choose between GET and CONNECT.
I configured Filezilla to use the HTTP proxy. It fails. If I use Internet Explorer with an ftp:// URL, it works.
From an Ethereal dump, I saw that Filezilla sends CONNECT <site name>:21 to the proxy, while IE sends GET ftp://<site name>/ . The proxy then sends the 200 OK reply to IE, while Filezilla gets a 302 Redirected (the URL to which the request is redirected, browsed with IE, says that proxy blocked access).
So, maybe Filezilla should use a plain GET, or allow the user to choose between GET and CONNECT.
If you don't support the HTTP protocol then why does the Proxy Settings page have a choice "HTTP 1.1 proxy". (I don't see this choice in any of the documentation, but it is present in the GUI.) I assume that this choice uses basic authentication (send user/pwd in the clear) as opposed to NTLM. There's another thread asking about NTLM authentication to the proxy server. Is this something that you see as a possibility?
FZ is great (and would be better if I could use it at work through our proxy server that only allows NTLM authentication).. Thanks!
FZ is great (and would be better if I could use it at work through our proxy server that only allows NTLM authentication).. Thanks!
Neal
-
- 500 Command not understood
- Posts: 1
- Joined: 2008-11-25 22:59
- First name: Adam
- Last name: Pritchard
Re: Cannot connect to FTP site through HTTP proxy
For those of you who have an HTTP proxy configured to allow only NTLM authentication and allows you to use HTTP CONNECT:
You can use a tool called cntlm that will allow you to set up a local proxy that does NOT require NTLM authentication, that will pass any requests you send to it through your corporate proxy with NTLM authentication. You just need to set up FileZilla to point to the local proxy.
Check out http://cntlm.awk.cz/.
This allow you to use any application that supports HTTP proxy but not NTLM authentication.
Hope this helps somebody!
You can use a tool called cntlm that will allow you to set up a local proxy that does NOT require NTLM authentication, that will pass any requests you send to it through your corporate proxy with NTLM authentication. You just need to set up FileZilla to point to the local proxy.
Check out http://cntlm.awk.cz/.
This allow you to use any application that supports HTTP proxy but not NTLM authentication.
Hope this helps somebody!