When you want to configure MS (Microsoft) FTP 7.5 on Windows Server 2008 R2 using passive mode, specific Kerio Control settings should be applied. In order to establish a successful FTP connection from other machines, traffic rules should include appropriate services and mappings (optionally). The IIS FTP server can be mapped to a VLAN interface.
Note: a similar configuration can be applied for Windows Server 2016 environment.
FTP server is configured in accordance with the recommendations from Microsoft FTP firewall settings docs
- Log in to Kerio Control Administration.
- On the left-hand side, click on Traffic Rules.
- Ensure the Service, Inspector, and Translation options are as shown in the following screenshot. For passive mode, it's important to have a protocol inspector disabled.
When you upload or download the files using FTP the upload or download should be successful.