troubleshooting Question

Publish FTP through TMG 2010 listener do not "hear" ftp packets

Avatar of pfpoulsen
pfpoulsen asked on
Microsoft IIS Web ServerMicrosoft Forefront ISA Server
15 Comments1 Solution2430 ViewsLast Modified:
Hi All

I'm trying to Publish a FTP site hosted on a IIS 7.5 through TMG 2010.
I've configured the FTP site to run passive and i'm using port range 5000-5005.

I'm running a frontend  - backend firewall setup. ASA at the front <-> DMZ <-> TMG2010.

I've allowed port 21 and port range 5000-5005 from the ASA to the TMG. So far so good.

On the TMG i've made a "publish non-web-server" rule to publish my internal FTP server. Im listening for port 21 connections on my Perimeter network (connected to the ASA).

But the FTP traffic is not matching on my publishing rule, insted its matching my Default rule (deny any any) :-(

I'm, sure that the ftp request is comming on the perimeter network - but why is it not matching my publishing rule??

Best Regards, Steffen
Join the community to see this answer!
Join our exclusive community to see this answer & millions of others.
Unlock 1 Answer and 15 Comments.
Join the Community
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 15 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros