[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 208
  • Last Modified:

Zywall USG 100 Firewall

Hello,
I am now setting up one Zywall USG 100 (latest firware applied), and I want to forward port 21 to internal server. I follow the steps from the manual, but it is not working. If I disable the firewall, it is working.

I am attaching the manual/tutorial. I used the steps from page 167 to 170. I cannot copy it here as it document is secured.
ZYWALL-USG-200-2.20.pdf
0
goliveuk
Asked:
goliveuk
  • 3
  • 2
1 Solution
 
nociSoftware EngineerCommented:
Hi port 21 is FTP (i expect that you want to use it as such..)
That not only means that port 21 needs to be forward but also the accompaning ports.
for file transfer. Did you enable the FTP ALG?

So besides a NAT rule
+ Firewall rule to pass on port 21
you also need to enable the ALG/FTP

Instead of using FTP please consider the use of SSH/SCP/SFTP...
that doesn't expose a users password like FTP does. It also makes the FTP transfer more private w.r.t. content. (and at least easier on network resources.).
0
 
goliveukAuthor Commented:
Hello noci,


ALG/FTP is enabled.
0
 
nociSoftware EngineerCommented:
Ok, can you make a screen shot of the config & post here. public IP addresses can be blurred if needed.
0
 
goliveukAuthor Commented:
Hello,

Here are some screens from the Zywall
Addresses.png
ALG.png
Firewall.png
nat.png
0
 
nociSoftware EngineerCommented:
Ah, firewall: WAN-> DMZ, where your FTP server has an address on the LAN1 port
so firewall should be WAN->LAN1 or you need to move the FTP server to the DMZ port.
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now