Hi,
I'm using ASL 3.214, i have a FTP server on a SSN
segment, i use DNAT to map incoming FTP request.
I have a rule that allow my ftp_publique_interface
FTP & FTP_CONTROL TO MY FTP_SSN segment.
If i let it like that, all the packet are drop for FTP service.
I have to creat a rule that ALLOW ANY FTP & FTP_CONTROL TO FTP_SSN.
Now it's working. But in the DNAT, i do specify the target network, wich is the FTP_SSN.... and the service are note changed.. FTP & FTP CONTROL..
What is the adavantage of DNAT if it's not let traffic passe true ?
Thanks,
This thread was automatically locked due to age.