Guest User!

You are not Sophos Staff.

Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 2 answers
  • Subscribers 3 subscribers
  • Views 5785 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Publish FTP Server

Chris Jones

Hello,

 

Sorry but I am new to Sophos and I'm running in to a bit of trouble when trying to set up a rule to access our ftp server on the LAN, from the WAN.

 

I am using a Sophos UTM 9 with the latest patches, and an IIS 8.5 as an FTP server.

 

I have tried creating a firewall rule to allow traffic to our server after following https://community.sophos.com/kb/en-us/121021, but

I have also tried to create a DNAT rule following https://community.sophos.com/products/unified-threat-management/f/network-protection-firewall-nat-qos-ips/11267/publish-ftp-server. However I need a way to publish the ftp site against a specific URL e.g ftp://ftpsite.domain.com, so I don't think that will work.

I had a look at the FTP proxy but from what I understand that is for internal use?

The FTP server has been created under Web Server Protection, Real Web servers and Virtual Web servers but I cant figure out how to link it all together.

Any help will be greatly appreciated,

Chris



This thread was automatically locked due to age.
Parents
  • 0

    Hi, Chris, and welcome to the UTM Community!

    I considered moving this to the Webserver Protection forum, but, to my knowledge, that functionality doesn't extend to ftp.  I've never tried it, but there's no mention of it being possible in the documentation.

    If your DNAT didn't work, it's probably because of #3 or #4 in Rulz.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Hello,

    Thank you for your help in trying to resolve this.

     

    I have got the DNAT rule working and I can see the requests being passed through the firewall, however nothing is reaching our FTP server. The host object is definitely correct in the DNAT rule, and I have scanned all traffic on the web server using Wire Shark but there is nothing relating to the firewall or client trying to access.

     

    Any ideas?

     

    Kind regards,

     

    Chris

Reply
  • 0 in reply to BAlfson

    Hello,

    Thank you for your help in trying to resolve this.

     

    I have got the DNAT rule working and I can see the requests being passed through the firewall, however nothing is reaching our FTP server. The host object is definitely correct in the DNAT rule, and I have scanned all traffic on the web server using Wire Shark but there is nothing relating to the firewall or client trying to access.

     

    Any ideas?

     

    Kind regards,

     

    Chris

Children
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML