[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] FTP through Checkpoint failing
We had a similar experience on Wednesday. However, our implementation
of CheckPoint FireWall-1 was on a Solaris 8 system running NG FP2.
There is no longer a Services tab in the Global Properties window where
we can tell the FireWall to enable FTP PASV.
Any thoughts?
Thank you,
Layne Meier
Atlanta Newspapers
On Wednesday, November 27, 2002, at 11:32 AM, Yim Lee wrote:
> Duke,
>
> Check your properities. In the Services tab, did you
> enable FTP Port data connection and enable FTP PASV
> data connection?
>
> Yim
> --- [email protected] wrote:
>> Hello FW-1 godz,
>>
>> FW-1 3.0b [VPN+DES] (Build Number: 3072) on Solaris
>> 2.6.
>>
>> I am having problems with an ftp session through my
>> firewall. I will
>> explain using bogus IP's....
>>
>> The user is able to login OK, but as soon as they
>> try to do an ls they lose
>> their connection. I see the PORT command arrive at
>> the firewall, but the
>> firewall does not allow it through. One thing I
>> noticed though was that
>> the IP included with the PORT command is not the
>> same as the IP used as the
>> source IP in the packet.
>>
>> 192.16.144.12 -> 123.12.13.21 FTP C port=1286 PORT
>> 10,0,0,5,5,7\r\n
>> --- Notice the 10,0,0,5 ? I would expect it to be
>> 192,16,144,12.
>>
>> The user is behind a NAT device. Their real IP is
>> 10.0.0.5. Could this be
>> what is causing my problem ? Can Checkpoint be
>> configured to allow this
>> packet to pass ?
>>
>> Thanks for any and all help,
>>
>> Duke Glover
>> *******************************************
>>
>> =================================================
>> To set vacation, Out Of Office, or away messages,
>> send an email to [email protected]
>> in the BODY of the email add:
>> set fw-1-mailinglist nomail
>> =================================================
>> To unsubscribe from this mailing list,
>> please see the instructions at
>> http://www.checkpoint.com/services/mailing.html
>> =================================================
>> If you have any questions on how to change your
>> subscription options, email
>> [email protected]
>> =================================================
>
>
> __________________________________________________
> Do you Yahoo!?
> Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
> http://mailplus.yahoo.com
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================