SonicWall Configuration to Allow FTP Server
Posted on 2010-11-23
Our organization has a SonicWall TZ-210 unit that acts as the firewall and router for our entire network, sitting between our ISP connection and our internal network. I am trying to set up an FTP server and configure the SonicWall to allow outside access to it, but am having problems.
So far, under the Network -> NAT Settings option, I have added a NAT policy with the following settings:
Original Source: Any
Translated Source: Original
Original Destination: WAN Interface IP
Translated Destination: [name of our server]
Original Service: FTP (All)
Translated Service: Original
Inbound Interface: Any
Outbound Interface: Any
Under Firewall -> Access rules, in the WAN to LAN zone, I have created a rule with the following settings:
Service: FTP (All)
Under Firewall -> Services, I have made sure that FTP (All) is configured as a group that includes the following individual services:
FTP (port 21)
FTP Control (port 21)
FTP Data (port 20)
Finally, under Network -> Address Objects, I have configured an object with the following settings:
Name: [our server name]
Zone Assignment: LAN
IP Address: [our internal IP address for the server]
With these settings in place, however, I cannot access the FTP server from the outside. When I use a simple command-line FTP client and connect to our IP address, it says it has established a connection, but then it hangs for a moment and then says "Connection closed by foreign host." When I check the FTP server's monitor window, I see no connection attempts, error messages, or other indications that the traffic has made it through to the server. So I must assume something is getting dropped at the firewall.
Any suggestions would be most appreciated.