This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Outbound FTP

I am trying to get outbound passive FTP (from LAN to WAN) working on Sophos XG210.

There is a very simple user/network rule already there that allows any LAN IP access to the WAN on all TCP ports ( 1 - 65535 ).

The control connection is made on port 21 with a successful login but it then hangs on retrieving a directory listing which from my experience is due to the passive port range being blocked but as above every single TCP port is allowed from the LAN.

Any help/pointers would be much appreciated.

Jon

This thread was automatically locked due to age.

Parents

0 emmosophos over 4 years ago

Hello Jon,

Thank you for contacting the Sophos Community!

You might need to change the FTP Protection mode from control to data.

This can be done by logging into the firewall via SSH and selecting Option 4 then using the following command:

console> set advanced-firewall ftpbounce-prevention data

Regards,
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 emmosophos over 4 years ago

Hello Jon,

Thank you for contacting the Sophos Community!

You might need to change the FTP Protection mode from control to data.

This can be done by logging into the firewall via SSH and selecting Option 4 then using the following command:

console> set advanced-firewall ftpbounce-prevention data

Regards,
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data