Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 5127 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to create a rule for FTP

i486DX50

Hi,

Our server connects remotely to get files from an FTP server.

The outbound connection goes fine, but then inbound connection to port 20 is blocked.

How to properly create a firewall/NAT rule for this?

This is what happens in firewall logs:

IP addresses were replaced by fake ones.

192.168.0.55 - internal computer initiating a connection to port 21

23.14.10.20 - FTP server our computer initiates a connection to

200.17.25.13 is the WAN IP address of our firewall.

What rules to create in order for this to work properly?



This thread was automatically locked due to age.
  • 0

    FTP is not simple to handle.

    Try to use passive FTP instead of active FTP.

    ... or better, switch to SFTP (SSH-Based-Copy)

    Most applications (or developers) are able to do these changes.


    Dirk

    Systema Gesellschaft für angewandte Datentechnik mbH  // Sophos Platinum Partner
    Sophos Solution Partner since 2003
    If a post solves your question, click the 'Verify Answer' link at this post.

Unfiltered HTML