I have a FileZilla 0.9.24 FTP Server sitting behind a Cisco PIX 506 Firewall running 6.3(5) and configure with PAT for Network Address Translation. When connecting in passive mode to the server without SSL/TSL Explicit turned on, I can connect and everything works great. If I turn on SSL/TSL Explicit on the server and the client (using FileZilla Client) I get the following:
WITHOUT SSL/TSL (WORKS)
Status: Connecting to PUBLIC IP ADDRESS:21...
Status: Connection established, waiting for welcome message...
Response: 220 You are connec
Command: USER GUEST
Response: 331 Password required for guest
Command: PASS *****
Response: 230 Logged on
Command: SYST
Response: 215 UNIX emulated by FileZilla
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: REST STREAM
Response: SIZE
Response: MLST type*;size*;modify*;
Response: MLSD
Response: AUTH SSL
Response: AUTH TLS
Response: UTF8
Response: CLNT
Response: MFMT
Response: 211 End
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (EXTERNAL IP ADDRESS,242,92)
Command: LIST
Response: 150 Connection accepted
Response: 226 Transfer OK
Status: Directory listing successful
Status: Disconnected from server
WITH SSL/TSL (DOESN'T WORK)
Status: Connecting to EXTERNAL IP ADDRESS:21...
Status: Connection established, waiting for welcome message...
Response: 220 You are connec
Command: AUTH TLS
Response: 234 Using authentication type TLS
Status: Initializing TLS...
Command: USER GUEST
Status: Verifying certificate...
Status: TLS/SSL connection established.
Response: 331 Password required for guest
Command: PASS *****
Response: 230 Logged on
Command: SYST
Response: 215 UNIX emulated by FileZilla
Command: FEAT
Response: 211-Features:
Response: MDTM
Response: REST STREAM
Response: SIZE
Response: MLST type*;size*;modify*;
Response: MLSD
Response: AUTH SSL
Response: AUTH TLS
Response: UTF8
Response: CLNT
Response: MFMT
Response: 211 End
Command: PBSZ 0
Response: 200 PBSZ=0
Command: PROT P
Response: 200 Protection level set to P
Status: Connected
Status: Retrieving directory listing...
Command: PWD
Response: 257 "/" is current directory.
Command: TYPE I
Response: 200 Type set to I
Command: PASV
Response: 227 Entering Passive Mode (EXTERNAL IP ADDRESS,182)
Command: LIST
Response: 425 Can't open data connection.
Error: Failed to retrieve directory listing
The Cisco PIX has translation lists that are port 21 redirect to port 21 and the same for port 20
I have access rules for ports 21 and 20 pointing to the interior server.
Also I'm running behind a Linksys Wireless WRT54G, but am getting the same results running plugged directly into my Cable Modem.
Everything works without SSL/TSL; but once I turn it on I get this error. Thank you for your help
Start Free Trial
