Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 2 subscribers
  • Views 5324 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

LOCAL FTP SERVER

StewartSquire

I have a localized network only (No internet/remote access) and have a client PC LAN a FTP server LAN and the Sophos UTM 210 all hanging off a Stongate intel security firewall.

Effectively the SOPHOS is a hairpin device but FTP traffic from my client needs to hit the ftp Server but up through the SOPHOS/PROXY first. I have allowed an any any rule on the stonegate and the routing is set statically to eradicate that device being any problem.

The traffic from the client needs to be SFTP and according to my instructions  the SOPHOS receives it scans it with AV then forwards it to the ftp server as ftp traffic, and vice versa.

Any ideas on where to start?

I have tried a few things and can get ftp working correctly from client to server but that seems more of a direct connection as opposed to it going through the SOPHOS.

Any help would be much appreciated.

Thanks



This thread was automatically locked due to age.
Parents
  • 0

    Hi, Stewart, and welcome to the UTM Community!

    I'm confused by this question asked in this forum.  Web Server Security only knows how to do HTTP and HTTPS, not FTP.

    Further, if we need to move this question to the Web Protection forum, the FTP proxy for clients does not do SFTP.

    Perhaps you could share your concerns that have you looking for such a solution.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson

    Thank you for your response.

    Your answer is as I suspected but have been told that this solution exists with the same hardware elsewhere.

    What we require is for the client to copy files to and from the ftp server and those files be antivirus checked, this part is not the problem.

    The second part is that any transfers from the client needs to be secure at least up to the proxy, it doesn't matter if its unsecure from the proxy to the server.

    Either SFTP or FTPS/SSL communication, my understanding is that we would point the client to the proxy as opposed to the ftp server as a secure communication and the proxy would then forward the traffic (after its been antivirus checked) to the FTP server.

    Is this possible?

    Thanks

Reply
  • 0 in reply to BAlfson

    Thank you for your response.

    Your answer is as I suspected but have been told that this solution exists with the same hardware elsewhere.

    What we require is for the client to copy files to and from the ftp server and those files be antivirus checked, this part is not the problem.

    The second part is that any transfers from the client needs to be secure at least up to the proxy, it doesn't matter if its unsecure from the proxy to the server.

    Either SFTP or FTPS/SSL communication, my understanding is that we would point the client to the proxy as opposed to the ftp server as a secure communication and the proxy would then forward the traffic (after its been antivirus checked) to the FTP server.

    Is this possible?

    Thanks

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?