SuperTaco
asked on
FTPS upload issues
Another anomaly for the boards. We have a SonicWALL Pro4060 in one site and a Cisco ASA 5500 in the other. The users from the SonicWALL site are reporting tons of packet drops when FTP'ing files to 1 client site that is using FTPS and TLS1 exclusive. FTP connections and FTPS connections to anywhere else, from the SonicWALL side are fine. No issue son the Cisco Side. All of the machines are Server 2003 in both locations I don't know the OS of the FTP server on the client site. any clues?
ASKER
it could be related to stateful inspection . We're running an older SonicOS. they refuse to update because it affect their test web server. I see al ot of dropped packet,s which is probably hy the FTP fails.
ASKER
SonicOS Enhanced 4.2.0.1-12e
there no setting sthere to disable SPI
there no setting sthere to disable SPI
Do you have the "application Firewall enabled" on the Sonic? Consider turning off and testing.
Do you have Gateway Anti-virus enabled" on the Sonic? Consider turning off and testing.
Either of these use Deep Packet Inspection and could be causing the issue.
Otherwise an upgrade to the SonicOS is most likely necessary or working with SonicWall which will probably recommend same.
Do you have Gateway Anti-virus enabled" on the Sonic? Consider turning off and testing.
Either of these use Deep Packet Inspection and could be causing the issue.
Otherwise an upgrade to the SonicOS is most likely necessary or working with SonicWall which will probably recommend same.
ASKER
I've go those turned off. Still no change. I'll try the OS upgrade.
ASKER
thanks, but no dice.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I ended up fixing this myself after callign sinWALL, but the comments did assist in pointing me in the right direction
Do you see drop notices in the Firewall log on the device?
Could be related to TCP statefull Inspection, disable ‘TCP Stateful Inspection’ on the ‘Firewall > TCP Settings page’