Sonic Wall is blocking PASV traffic from coming into the FTP server
Our Sonic Wall is blocking PASV traffic from coming into the FTP server. The connection works okay on port 21, then when the server switches to the PASV ports, the firewall drops the connection, even though the ports are specifically assigned. If I uncheck the
FTP Bounce Attack Prevention box on the diag screen, PASV traffic is not blocked, however, this causes us to lose phone service and DNS. The firewall ends up sending packets back and forth with the Edgewater device causing the problem.
Any ideas on resolving this problem is greatly appreciated.
Software/Hardware used:
Software/Hardware used:
ASKED:
March 5, 2008 4:08 PM
UPDATED:
June 8, 2012 2:35 AM
Answer Wiki:
If you have a Cisco device in the network, use it to examine packets as they pass to determine what port numbers PASV traffic uses. There are ways of doing this with a network card in promiscuous mode but they are a bit close to hacking tools you do not want to tempt anybody with.
Set your Cisco login session to record. At the prompt, enter:
terminal monitor
Then enter:
Debug IP Packet
This puts every packet on the screen. You can simply enter NO debug ip packet to cancel.
Examine the IP traffic that PASV uses and extract all the port numbers, then open only those port numbers. Test. Adjust.
To see all answers submitted to the Answer Wiki: View Answer History.
RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
