Solved

Symantec Enterprise Firewall

Posted on 2004-10-15
2
199 Views
Last Modified: 2013-11-16
We have a Symantec Enterprise Firewall (v7.0.4) and would like to put an FTP server using SafeTP in our DMZ. On the SafeTP firewall setup page (http://safetp.cs.berkeley.edu/firewall.html) it says to "Configure the firewall so that incoming connections to ports (say) 40000-40999 are forwarded to the sftpd server (at the same port as the connection requested)." How do I go about doing this? Thanks!
0
Comment
Question by:MichaelHSmith
2 Comments
 
LVL 1

Accepted Solution

by:
mxp1l0t earned 125 total points
ID: 12359229
You shouldn't need to open up those ports inbound to support PASV transfers with the SEF firewall.  When you specify the ftp application proxy in the inbound rule, the firewall keeps track of the ftp communication and will allow the communication on any port > 1024.

In brief you will need to create 2 network entities.  1 for the DMZ address and 1 for the outside address.
1 redirected service for ftp
1 rule allowing the traffic inbound
0
 

Author Comment

by:MichaelHSmith
ID: 12870518
Thanks.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
To setup a SonicWALL for policy based routing to be used with the Websense Content Gateway there are several steps that need to be completed. Below is a rough guide for accomplishing this. One thing of note is this guide is intended to assist in the…
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

815 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

8 Experts available now in Live!

Get 1:1 Help Now