sctowne
asked on
How to open active ftp on a cisco asa
I have a user that needs to access an active ftp (as opposed to passive) server from inside an cisco asa ver 8.2(2) firewall.
The firewall is somehow blocking her access from the inside out to the active ftp server. I cant seem to find the proper documentation to allow this.
The firewall is somehow blocking her access from the inside out to the active ftp server. I cant seem to find the proper documentation to allow this.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks to all, the solution had to do with the Protocol inspection and service policy rules. I cleared what was there and added the following line to the Cisco ASA:
class-map inspection_default
match default-inspection-traffic
!
!
policy-map asa_global_fw_policy
class inspection_default
inspect ftp
!
service-policy asa_global_fw_policy global
class-map inspection_default
match default-inspection-traffic
!
!
policy-map asa_global_fw_policy
class inspection_default
inspect ftp
!
service-policy asa_global_fw_policy global
ASKER