Greetings,
I am running a current UTM220 on v8.311. At hand is a problem with file transfers to a FTP server (Serv-U) residing on a local network. We've dealt with the common problems of FTP servers behind firewalls, PASV mode ports, etc. However today I have a new log error I've not seen before.
One client connects to our server fine, gets a directory listing, and when they initiate a transfer it begins, then aborts. If the packetfilter log I see:
nf_conntrack_ftp: invalid IP address, resetting connection
The addresses shown are the public IP address for our FTP server and the address of the client. The public FTP address is established as an additional address on the WAN interface, and we have a NAT rule permitting all FTP services (21, 20, and PASV ports). The Serv-U server also last this address configured as its PASV port. Nothing appears in the Intrusion Detection logs.
Can anyone shed some light on this error? I don't know what to advise the client on this.
Thanks
This thread was automatically locked due to age.
