Solved

Not able to access FTP site behind PIX firewall

Posted on 2008-10-30
4
673 Views
Last Modified: 2013-12-02
HI,
I published one FTP in IIS and it is working fine locally. If I try to access from out side, i am getting error " permission problem"  I installed filezilla FTP client and I got the below error:
================
Status:      Connecting to 213.42.228.29...
Status:      Connection established, waiting for welcome message...
Response:      220 Microsoft FTP Service
Command:      USER anonymous
Response:      331 Anonymous access allowed, send identity (e-mail name) as password.
Command:      PASS **************
Response:      230 Anonymous user logged in.
Command:      SYST
Response:      215 Windows_NT
Command:      FEAT
Response:      211-FEAT
Response:          SIZE
Response:          MDTM
Response:      211 END
Status:      Connected
Status:      Retrieving directory listing...
Command:      PWD
Response:      257 "/" is current directory.
Command:      TYPE I
Response:      200 Type set to I.
Command:      PASV
Response:      227 Entering Passive Mode (192,168,1,9,5,5).
Status:      Server sent passive reply with unroutable address. Using server address instead.
Command:      LIST
Response:      425 Can't open data connection.
Error:      Failed to retrieve directory listing
=================
I already forwarded ports 21 and 20 in pix to local FTP server.
What extra settings I need to access the FTP from outside through IE or Windows Explorer.

Thanks
Pradeep
0
Comment
Question by:osigrp
4 Comments
 
LVL 6

Expert Comment

by:RemcovC
ID: 22839146
Ftp uses more ports then 20 and 21, in your case i guess you need to forward port 1023 also.
You can also look at your pix log, to see why the connection is dropped.
see this article for more information on port use of FTP
http://www.slacksite.com/other/ftp.html
0
 

Author Comment

by:osigrp
ID: 22839268
But How I can see the pix log?? any commands?
tks
0
 
LVL 1

Accepted Solution

by:
bml104 earned 500 total points
ID: 22840328
assuming you have not internal access-list

fixup protocol ftp
0
 
LVL 1

Expert Comment

by:sivaji_ganesh
ID: 24807653
Thanks. "fixup protocol ftp" worked for me.
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco Prime and Maps 3 46
Cisco Catalyst 3560 VLAN routing issue? 2 27
ASA Tunnel 18 34
How to transition DHCP role from Cisco Layer 3 Switch (Core) to Windows Server DHCP 4 29
Hello, As I have seen there a lot of requests regarding monitoring and reporting for exchange 2007 / 2010 / 2013 I have decided to post some thoughts together and link to articles that have helped me. Of course a lot of information you can get…
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question