Symantec Enterprise Firewall

We have a Symantec Enterprise Firewall (v7.0.4) and would like to put an FTP server using SafeTP in our DMZ. On the SafeTP firewall setup page ( it says to "Configure the firewall so that incoming connections to ports (say) 40000-40999 are forwarded to the sftpd server (at the same port as the connection requested)." How do I go about doing this? Thanks!
Who is Participating?
mxp1l0tConnect With a Mentor Commented:
You shouldn't need to open up those ports inbound to support PASV transfers with the SEF firewall.  When you specify the ftp application proxy in the inbound rule, the firewall keeps track of the ftp communication and will allow the communication on any port > 1024.

In brief you will need to create 2 network entities.  1 for the DMZ address and 1 for the outside address.
1 redirected service for ftp
1 rule allowing the traffic inbound
MichaelHSmithAuthor Commented:
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.