On Checkpoint Next Generation FW, the VPN works however Active FTP doesnt works, passive works
Posted on 2008-11-07
Need your assistance here.
We have a remote site to which we connect via VPN (Lan 2 LAN). VPN is up and connection (telnet) to remote systems is working however the problem is that the active FTP is not working, when we try passive FTP it works.
The ACL is allowed on subnet. For testing we allowed class A subnet and then the active FTP works but on reverting back to class C subnet, the active FTP stops working. Moreover, we are not able to see FTP packets in the logs when we intentionally block them (FTP).
At our end we work on Cisco devices so we are not sure about Checkpoint, hence would appreciate your help here.