I had (have) similar problems. The answer I got was to make sure that SYN-Defender
(See system policy) is in PASSIVE mode or OFF (so much for the option!). My FTP's
from the Internet to ANY statically mapped IP were failing. They would be able to
log in, but nothing else - no ls command, no get, put, or anything else. Even after
finding this out, I had to move my FTP server back into the production net (YUC!).
Steve Smith
Reinhard Posmyk wrote:
> After updating to SP1+Hotfix there are problems to connect to a ftp
> server (dmz) from the internal network using cvp. VPN-1 runs on HP-UX 10.20.
>
> Transaction says:
> 220 aftpd: Check Point FireWall-1 Secure FTP server running on firewall
> Name (ftp:root): ftp
> 331 aftpd (not authenticated): Enter server password, or for anonymous login
> use your complete e-mail addr
> Password:
> 421 Service not available, remote server has closed connection
> Login failed.
>
> Data on the ftp server:
> ftpserver -> firewall-dmz FTP R port=4889 230-\r\n
>
> 0: 0010 8395 1d51 0800 208e 7df2 0800 4510 .....Q.. .}...E.
> 16: 002e 89d7 4000 ff06 22bf c37d a413 c37d ....@..."..}...}
> 32: a414 0015 1319 fc8e db4d 41a6 bba2 5018 .........MA...P.
> 48: 2238 66ad 0000 3233 302d 0d0a "8f...230-..
>
> firewall-dmz -> ftpserver FTP C port=4889
>
> 0: 0800 208e 7df2 0010 8395 1d51 0800 4500 .. .}......Q..E.
> 16: 0028 3561 4000 4006 364c c37d a414 c37d .(5a@[email protected].}...}
> 32: a413 1319 0015 41a6 bba2 fc8e db53 5010 ......A......SP.
> 48: 8000 7857 0000 0000 0000 0000 ..xW........
>
> ftpserver -> firewall-dmz FTP R port=4889 230- Hello ft
>
> 0: 0010 8395 1d51 0800 208e 7df2 0800 4510 .....Q.. .}...E.
> 16: 023b 89d8 4000 ff06 20b1 c37d a413 c37d .;..@... ..}...}
> 32: a414 0015 1319 fc8e db53 41a6 bba2 5018 .........SA...P.
> 48: 2238 e0ee 0000 3233 302d 2020 2020 2020 "8....230-
> 64: 2020 4869 6c6c 6f20 6674 702d 416e 7765 Hello ftp...
> firewall-dmz -> ftpserver FTP C port=4889
>
> 0: 0800 208e 7df2 0010 8395 1d51 0800 4500 .. .}......Q..E.
> 16: 0028 3565 4000 4006 3648 c37d a414 c37d .(5e@[email protected].}...}
> 32: a413 1319 0015 41a6 bba2 fc8e dd66 5011 ......A......fP.
> 48: 8000 7643 0000 0000 0000 0000 ..vC........
>
> ftpserver -> firewall-dmz FTP R port=4889
>
> 0: 0010 8395 1d51 0800 208e 7df2 0800 4510 .....Q.. .}...E.
> 16: 0028 89d9 4000 ff06 22c3 c37d a413 c37d .(..@..."..}...}
> 32: a414 0015 1319 fc8e dd66 41a6 bba3 5010 .........fA...P.
> 48: 2238 d40b 0000 "8....
>
> ftpserver -> firewall-dmz FTP R port=4889 221 You could at lea
>
> 0: 0010 8395 1d51 0800 208e 7df2 0800 4510 .....Q.. .}...E.
> 16: 004d 89da 4000 ff06 229d c37d a413 c37d .M..@..."..}...}
> 32: a414 0015 1319 fc8e dd66 41a6 bba3 5018 .........fA...P.
> 48: 2238 e2b1 0000 3232 3120 596f 7520 636f "8....221 You co
> 64: 756c 6420 6174 206c 6561 7374 2073 6179 uld at least say
> 80: 2067 6f6f 6462 7965 2e0d 0a goodbye...
>
> Did I miss anything after the update?
>
> Reinhard Posmyk
>
> ================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ================================================================================
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
