09-19-2016 08:00 AM - edited 03-12-2019 01:17 AM
Hey all, I have been trying to figure this out today, I have not gotten any further, I am a complete newbie to using the ASA firewall.
On one of our virtual servers in the company, I have set up an FTP server with ISS. I can access it by going through ftp://internal-ip-of-the-server.
I am trying to set up the firewall to allow outside connections to access the FTP server on the virtual server, but without luck, every time I come across a question and an answer on this site (And I have been through a lot) There are long config files that I have no idea what to do with.
I am connecting to the firewall with ASDM.
ASA Version 9.1(2)
ASDM Version 7.1(3)
Device Type ASA 5515
I followed this guide, but I still cannot access the FTP server.
http://www.petenetlive.com/KB/Article/0000772
Again very sorry for my noobish question, I am, as I mentioned, VERY new to this.
Thank you so much for your answers in advance, any help is greatly appreciated.
09-19-2016 08:12 AM
09-20-2016 03:49 AM
Hello Luke, thank you so much for taking your time to help me, it is greatly appreciated.
I have reverted the changes I made following the guide, however there are still a lot of user-made configurations on the firewall, from the previous IT guy.
The ASA is version 9.1(2) or thats what i says in the asdm.
The Ip of the internal ftp server is 192.168.15.5, the firewall is at 192.168.15.1.
I would like to post the config file, but I can't for the life of me figure out how to locate it.
Again thank you so much for wanting to help me, I spent way too much time yesterday trying to make it work.
Best
09-21-2016 10:38 PM
10-20-2016 04:36 AM
Hello Luke, again thanks for wanting to help me, I am now back in the office.
I couldn't access the ASA through SSH, but I went into the ASDM>Tools>Command Line Interface and ran the 'show run' command.
Here is the result, I have omitted encrypted passwords and IP addresses.
Result of the command: "show run";
Will I need to add something to the config ? or can I run commands to add something through the command line?
Best
09-20-2016 06:30 AM
In addition to the other post, I have referred to the ports 5000-5100 in the ISS for passive connections from the external firewall.
11-10-2016 03:49 PM
Hi Luke.
I am running an ASA 5505 V8.2
I need to allow FTP access to my FTP in the DMZ from the outside network.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide