FWSM Blocking FTP

uchideshi — Mon, 11 Mar 2019 15:35:17 GMT

I have a FWSM running 3.1.4 that has an outside and inside interface. There is a server 146.22.x.x on the outside that needs to ftp to 146.27.y.y The FW buffer log shows access-list outside is denying the traffic. I look at access-list outside and the very first line allows 146.22.x.x to 146.27.y.y I add an ACE on top to allow any tcp from 146.22.x.x to 146.27.y.y but still gets the denies in the log. I pipe the hex number on the deny info and it shows that the ACL denying the traffic is my explicit deny ip any any on line 91 of access-list outside. I am using the default class-map and policy-map. FTP is being inspected under the default map. Nat control is turned off on this FWSM. Any suggestions on how to troubleshoot this issue? Thanks

Rommel

Re: FWSM Blocking FTP

mmacdonald70 — Sun, 24 May 2009 23:38:47 GMT

Without seeing the logs, I can only hazard a guess.

What are the ports of the denied traffic?

Re: FWSM Blocking FTP

uchideshi — Wed, 12 Aug 2009 16:38:00 GMT

Update: Received help from TAC and turns out to be an issue with 3.1(4) code. Upgraded to 4.0.4 code as TAC recommended which resolved the issue.

Rommel

topic Re: FWSM Blocking FTP in Network Security

FWSM Blocking FTP

Re: FWSM Blocking FTP

Re: FWSM Blocking FTP