Has anyone had problems with publishing ftp server behind Proventia M series? FTP server (vsftp) has defined port range for passive ftp conection,as well as public IP address of gateway (pasv_address=<proventia EXT_IP>) for proper PORT command forming.Active ftp works w/o problems, but on switching to passive mode, I can see proventia rejects it and terminates connection?!
There are two firewall rules, one to accept connections form Internet to ports 20,21,<pasv_address_range> and second under Destination NAT, mapping those ports w/o translation to ftp server. It's the same if I disable ftp ALG in firewall, as well as AV protection for ftp... Behind iptables-based linux firewall, it works fine, but I am having troubles to find some good docs about igateway... -- Milan Pavlovic Technical support engineer www.real-sec.com _______________________________________________ ISSForum mailing list [email protected] TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to https://atla-mm1.iss.net/mailman/listinfo/issforum To contact the ISSForum Moderator, send email to [EMAIL PROTECTED] The ISSForum mailing list is hosted and managed by Internet Security Systems, 6303 Barfield Road, Atlanta, Georgia, USA 30328.
