|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] FTP Problems
We are seeing the high port being dropped. Shouldn't this be covered by the allow FTP rule? Wouldn't this be the same connection? If not what should the rule look like? It sounds like this is another undocumented feature in 40 SP7 & 4.1 SP2. Thanks -PaulK -----Original Message----- From: Daniel Wirth [mailto:[email protected]] Sent: Wednesday, September 13, 2000 7:57 AM To: Cihan Subasi (Garanti Teknoloji); 'Christopher Black'; [email protected] Subject: RE: [FW1] FTP Problems Hi, Check the following: FTP opens a data-connection an a high-port from server to client. Are these connections allowed in your rulebase? If you are connecting to your Firewall, please note in your policy properties that the default setting for "Apply Gateway Rules to Interface Direction" no longer is "inbound" but "eitherbound". this could be the reason for the data-connection being dropped. One more thought: Check, if you allow PASV-connections in you policy properties if you are using any ftp-client with GUI (e.g. wsftp, netscape,... ). HTH, Daniel Wirth Consultant Network Security _____________________________________________________ Daniel Wirth Systemberater Netzwerksicherheit IQproducts GmbH Max-Planck-Str. 5, 80609 Dornach Tel.: ++49 89 944940-0 Fax.: ++49 89 944940-50 eMail: [email protected] http://www.iqproducts.de IQproducts ist ein Unternehmen der Systematics AG _____________________________________________________ Bitte beachten Sie fuer Ihre Supportanfragen: Tel.: ++49 89 944940-77 eMail: [email protected] > -----Original Message----- > From: [email protected] > [mailto:[email protected]]On Behalf Of > Cihan Subasi (Garanti Teknoloji) > Sent: Wednesday, September 13, 2000 4:33 PM > To: 'Christopher Black'; [email protected] > Subject: RE: [FW1] FTP Problems > > > > I am having same problem for some of my FTP connection...I would > definetly use any answer...Thanks > > -----Original Message----- > From: Christopher Black [mailto:[email protected]] > Sent: Wednesday, September 13, 2000 5:13 PM > To: [email protected] > Subject: [FW1] FTP Problems > > > > Just wondering if any one else is having this problem? > > After we upgraded from 4.0 to 4.1 running on Solaris, some > (mostly going to Windows NT FTP servers) FTP transmissions stop > working. After login the ls or any command that opens the back > channel just freezes. According to the logs the reverse cannel > is being dropped even if passive is invoked. > > I have been able to recreate the problem on demand. > > I tried to change the base.def file to what was recommenced for > FTP issues with the same results, > Any advice would be appreciated. > > > > Christopher Black > Network Engineer > Communication Concepts Group > CCI, MCS, Mail-Gard, PCCI & DMSI >> [email protected] > > > > ================================================================== > ============== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================================== > ============== > > > ================================================================== > ============== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================================== > ============== > ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
