Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Possible FTP timeouts from MS boxes

To: "Maertens Jochen \(JMRT\)" <[email protected]>, "'Cross, Michael'" <[email protected]>, [email protected]
Subject: RE: [FW1] Possible FTP timeouts from MS boxes
From: [email protected]
Date: Fri, 24 Aug 2001 14:19:20 -0700 (PDT)
In-reply-to: <[email protected]>
Sender: [email protected]

Does the client get 425 errors or do you see "reason
bad PORT command" in firewall logs? We have seen this
also and solved it by changing the client to use
passive FTP.

Phoneboy has an article that could be related,
http://www.phoneboy.com/faq/0106.hmtl. This did not
work for us.

Another solution that is discouraged by support for
security reasons is to create $FWDIR/conf/aftpd with
the line "port_spoof=1". We did not test this as
passive worked.

Larry

--- "Maertens Jochen (JMRT)"
<[email protected]> wrote:
> Hi there,
>  
> We also suffer from this problem. It seems to be the
> port that changed
> during transfers of the files. It all works well
> till suddenly the source
> port changes for some reason on the next file (which
> we found out by looking
> at the ftp server logs). Logged it with checkpoint
> by they say it's a
> Microsoft problem. This however did not happen with
> previous version of FW1.
> 
>  
> Jochen
> 
> -----Original Message-----
> From: Cross, Michael
> [mailto:[email protected]] 
> Sent: Wednesday, August 22, 2001 11:26 PM
> To: [email protected]
> Subject: [FW1] Possible FTP timeouts from MS boxes
> 
> 
> 
> All, 
> 
> I am having an issue where I am FTPing a large
> number of small files from an
> NT to a Solaris box in the DMZ.  The firewall is
> allowing the data through
> but for some reason the connection gets closed
> prematurely ending the FTP
> before all the files are transferred.  
> 
> I had recently moved the solaris box from an old
> firewall (3.0b) to a new
> firewall (4.1).  The problem didnt appear until
> after the move.
> 
> To make matters worse, I have tested it on a few
> windows boxes and they all
> seem to have the same problem...and...I have tested
> it on a a few unix boxes
> and they work without a problem.
> 
> I have spoken with some people who mumble stuff
> about MS and the IP stack
> during FTP, but I have never heard anything about
> that.  
> 
> Has anyone seen this kind of problem before or
> anything like it? 
> 
> Thanks 
> 
> MCross 
> 
> 


__________________________________________________
Do You Yahoo!?
Make international calls for as low as $.04/minute with Yahoo! Messenger
http://phonecard.yahoo.com/


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

References:
- RE: [FW1] Possible FTP timeouts from MS boxes
  - From: "Maertens Jochen (JMRT)" <[email protected]>

Prev by Date: RE: [FW1] whats the best linux distro for fw-1 4.1 sp3
Next by Date: Re: [FW1] OSPF on a firewall. Good? Bad? What?
Previous by thread: RE: [FW1] Possible FTP timeouts from MS boxes
Next by thread: Re: [FW1] Possible FTP timeouts from MS boxes
Index(es):
- Date
- Thread