This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

FTp Out Questions

hi,

When I add rules to permit FTP (ftp and ftp control) I can initiate an ftp session and sucessfully xfer data on a PC (Windoze), But when I try to do this on a mac it times out. If I add a rule [internal any any] then the mac CAN run an ftp transfer - am I missing something with the mac implementation of ftp ??

This thread was automatically locked due to age.

Parents

0 tom_01 over 23 years ago

hi steve,

I assume that you are using NAT on the firewall, and passive FTP mode with your MAC FTP client (meaning that the Server is passive, so the client will build data connections to the server). Traditional FTP servers will give your client a target port of 20 (ftp-data) to connect to. However many more recent servers will use non-privileged ports (> 1024), and the problem is that you do not have an allow-rule for your client to connect to those. to resolve that problem, use active FTP with the MAC client. the Astaro's connection tracking should be able to deal with it. I guess that the Windoze client uses Active by default, thats why it works.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 tom_01 over 23 years ago

hi steve,

I assume that you are using NAT on the firewall, and passive FTP mode with your MAC FTP client (meaning that the Server is passive, so the client will build data connections to the server). Traditional FTP servers will give your client a target port of 20 (ftp-data) to connect to. However many more recent servers will use non-privileged ports (> 1024), and the problem is that you do not have an allow-rule for your client to connect to those. to resolve that problem, use active FTP with the MAC client. the Astaro's connection tracking should be able to deal with it. I guess that the Windoze client uses Active by default, thats why it works.
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data