[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] FTP through Checkpoint failing
yes sir, both of those are enabled.
Thanks,.
Duke Glover
****************************************
|---------+---------------------------------------------->
| | "Yim Lee" <[email protected]> |
| | Sent by: "Mailing list for |
| | discussion of Firewall-1" |
| | <[email protected]|
| | kpoint.com> |
| | |
| | |
| | 11/27/02 11:32 AM |
| | Please respond to "Mailing list for|
| | discussion of Firewall-1" |
| | |
|---------+---------------------------------------------->
>----------------------------------------------------------------------------------------------|
| |
| To: [email protected] |
| cc: |
| Subject: Re: [FW-1] FTP through Checkpoint failing |
>----------------------------------------------------------------------------------------------|
Duke,
Check your properities. In the Services tab, did you
enable FTP Port data connection and enable FTP PASV
data connection?
Yim
--- [email protected] wrote:
> Hello FW-1 godz,
>
> FW-1 3.0b [VPN+DES] (Build Number: 3072) on Solaris
> 2.6.
>
> I am having problems with an ftp session through my
> firewall. I will
> explain using bogus IP's....
>
> The user is able to login OK, but as soon as they
> try to do an ls they lose
> their connection. I see the PORT command arrive at
> the firewall, but the
> firewall does not allow it through. One thing I
> noticed though was that
> the IP included with the PORT command is not the
> same as the IP used as the
> source IP in the packet.
>
> 192.16.144.12 -> 123.12.13.21 FTP C port=1286 PORT
> 10,0,0,5,5,7\r\n
> --- Notice the 10,0,0,5 ? I would expect it to be
> 192,16,144,12.
>
> The user is behind a NAT device. Their real IP is
> 10.0.0.5. Could this be
> what is causing my problem ? Can Checkpoint be
> configured to allow this
> packet to pass ?
>
> Thanks for any and all help,
>
> Duke Glover
> *******************************************
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================