allow passive FTP through ASA5510
Posted on 2013-01-23
Ok so I've seen there are a few posts regarding this and as I'm going through checking my configs, I can't seem to get this to work. The issue is most certainly that I'm not allowing passive ports through the firewall. My FTP client works fine internally, but externally It connects and authenticates to the server no problem, but when running List command I get failed to retrieve directory listing.
- How can I check if passive FTP is checked in inspect? I am using port 2121 for FTP due to Port 21 already being used with this external Address and forwarded to another PC.
- Also I have enabled passive ports 60000 - 65535 but Im obviously missing something.
- the FTP host is in my DMZ so maybe thats part of the problem I'm not setting up my ACL correctly?
What do you need from me to help?