PIX FTP Passive

evildik · May 18, 2004

Help!

I have a windows client app that uses a automated ftp session. As you know Windows cmd ftp does not allow passive mode... How can i configure my pix so that active ftp will work...

FTP Scenario
Client --> firewall ---> internet ---> PIX --> webserver

The client connects to the ftp server without a problem but when you do a LIST it hangs and times out...

dozier · May 20, 2004

the following command should fix that:

fixup protocol ftp 21

but i'd like to see someone back me up on that because i'm still elarning myself.

chicocouk · May 21, 2004

I'll back you up if you like, that should sort it out for either active or passive ftp. Basically it tells the pix to expect traffic on another port (the ftp-data port, either 20 or a high number port, depending on whether you're using active or passive ftp) from the same host that you made the connection on port 21 to, shortly after that connection. So the pix dynamically opens that connection as it's normal anticipated behaviour.

So yes, that should do it

CCNA, MCSE, Cisco Firewall specialist, VPN specialist, wannabe CCSP

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

PIX FTP Passive

evildik

MIS

dozier

MIS

chicocouk

MIS

Similar threads

Part and Inventory Search

Sponsor