Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 2 subscribers
  • Views 1648 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNAT and FTP

Michael_A
I've setup a DNAT rule for FTP so that I can use port 2100 for FTP. I'm accessing FTP on a Windows server which is also port 2100.

So it works for making the connection but when I use dir I get;

500 'EPSV' comand not understood.

It has to be something through the firewall because if I make the same connection from inside the network it doesn't have a problem.

Can anyone help?


This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to BarryG
    A status shows that passive mode is off but when I try a dir I get;

    500 'EPSV' command not understood
    227 Entering Passive Mode

    As a guess I tried changing the service to 2120:2121 but I got the same results.
Children
  • 0 in reply to Michael_A
    If you're using passive mode (most command-line ftp clients do), and you're doing NAT, then you NEED the FTP Connection Tracker to be turned on on the firewall.
    Unfortunately, I don't think it works if you change the ports.

    Barry