• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2100
  • Last Modified:

Sonicwall TZ-180 FTP issue - FTP: Port Bounce Attack Dropped

I have a sonicwall TZ-180. I have an application that is trying to establish a passive FTP connection, but Intrusion Protection on the sonicwall is dropping the connection with a log event that looks like this:

FTP: Port Bounce Attack Dropped

I have found some posts for older sonicwall devices that tells you how to go in and tell the sonicwall how to ignore this alert, but I cannot find anything on the sonicwall enhanced OS which is on my TZ-180. I have looked in the intrusion prevention section of my sonicwall but cannot find this particular event so I can disable it. Any help would be greatly appreciated!

0
jkwasson
Asked:
jkwasson
1 Solution
 
jlwcciCommented:
In your IP configuration are you blocking low priority attacks? What other security services do you use?
0
 
jkwassonAuthor Commented:
thanks for your help, but I figured this one out. My program is  a VB6 program and I was attempting to use the INET control which does not expressly allow for a PASV FTP connection. I switched the app to use API calls from wininet.dll, which allows you to explicitly set PASV FTP mode and as soon as I did that I had no issues getting through the firewall. I believe the INET control issues a PORT command, which got blocked by the firewall, wininet.dll does not do that in PASV mode
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now