The 'fixup protocol ftp strict 21' is generally suggested for passive ftp. This is to make sure servers are the only ones that can send the PASV command. This closed a security hole in the past.
Michael Le, CCIE #6811 --- Jeffrey Reed wrote: > Are there any special considerations when allowing > FTP through a PIX if > clients can do either passive or active FTP > sessions? > > Jeffrey Reed > Classic Networking, Inc. > Cell 717-805-5536 > Office 717-737-8586 > FAX 717-737-0290 [EMAIL PROTECTED] __________________________________________________ Do You Yahoo!? Yahoo! Shopping - Mother's Day is May 12th! http://shopping.yahoo.com Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=43806&t=43625 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
