|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW1] FTP Prob - Hanging on NLST
Dumb question, but have you tried it with just FTP in the service column? You shouldn't need all that other stuff with stateful inspection (and in fact it could confuse FW-1) Jason Karyn McCambridge wrote: > > I have a few NAT'd FTP servers inside my CP FW-1 4.1 SP2. I can ping to my > NAT'D IP address of both FTP Servers successfully. I can FTP from the > outside into my MS-FTP Server just fine and issue an LS command and get the > listing just fine. However, on my other FTP Server I can login just fine > and when I issue the LS command it just hangs forever. If I turn on > debugging I see it is a problem with the data connection. > this is where it just sits and sits... > > ftp> ls > ---> PORT X,X,X,X,143,87 > 250 PORT command successful > ---> NLST > 150 Opening ASCII mode data connection > > I have turned off FTP PASV in my FW Policy Properties and left FTP PORT ticked. > > Here is what my rule looks like for this specific internal host: > SRC = Perm. Inbound Group DEST= NAT'D HOST SVC= FTP (21) & FTP-DATA (20) & > TCP High Ports and UDP High Ports Action = ACCEPT > > Anybody have any ideas? I see FTP seems to be a common problem with FW-1. > > Thanks, > Karyn > > > ================================================================================ > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================================================ ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
