It is supported, see: http://www.cisco.com/warp/public/707/28.html
It was first implemented on IOS Firewall, and I have personally used it there. And, yes that is what you are doing :). I thought of a security warning regarding fixup protocol ftp 21 http://www.cisco.com/warp/public/707/pixftp-pub.shtml PASV may now be all that is supported with fixup enabled. Glenn -----Original Message----- From: Noonan, Wesley [mailto:[EMAIL PROTECTED]] Sent: Friday, February 01, 2002 7:57 PM To: 'bob bobing'; 'Glenn Shiffer'; [EMAIL PROTECTED] Subject: RE: PIX 501, PAT and PASV... Yeah, that's what I am doing (I think) with the static statements I have. It works pretty good, except for FTP clients that don't support PASV. If I turn of the fixup protocol, it works with all FTP clients, but then none of my outbound FTP requests will work... It's mildly annoying, as all of this works without a hitch with my GNATBox (not enough connections to keep it, and I decided to look at the PIX) and ISA (no desire to pin down a beefy machine to run it 24/7)... Wes Noonan, MCSE/MCT/CCNA/CCDA/NNCSS Senior QA Rep. BMC Software, Inc. (713) 918-2412 [EMAIL PROTECTED] http://www.bmc.com -----Original Message----- From: bob bobing [mailto:[EMAIL PROTECTED]] Sent: Friday, February 01, 2002 17:55 To: Noonan, Wesley; 'Glenn Shiffer'; [EMAIL PROTECTED] Subject: RE: PIX 501, PAT and PASV... I seem to remember seeing that 6.x had support for port redirecting, have you looked for this/at this? _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
