ASA 5505 7.2(2) using ASDM 5.2(2) - Need to throttle bandwidth

sbrown · ‎12-19-2011

Hello all,

I have an ASA 5505 7.2(2) using ASDM 5.2(2) and I need to fix two items:

1) Throttle bandwidth down to 1MB on the traffic going in/out of my FTP server on the inside using NAT

2) Re-enable the ability to access my FTP server using the url ftp://ftp2.xxxx.com. This used to work, but somewhere in configuring the ASA I lost the ability to use the outside url, and can only access the FTP using the inside IP address.

Any help is greatly appreciated.

Thanks in advance.

Steven

mvsheik123 · ‎12-19-2011

Hello,

1. Refer to below links..

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a008084de0c.shtml

https://supportforums.cisco.com/thread/2040620

2. Post the configs from ASA. It may relates to 'Nat' issue.

hth

MS

sbrown · ‎12-19-2011

I will look into #1 above.

running config is attached as requested.

thanks

mvsheik123 · ‎12-19-2011

can you try by removing 'insect ftp' under policy-map global_policy?

Thx

MS

sbrown · ‎12-19-2011

Removed.

Saved to memory - no change.

Steven

mvsheik123 · ‎12-19-2011

I guess you need to allow ftp-data as well..

access-list out_in extended permit tcp any host x.x.91.243 eq ftp-data

If it does not resolve the issue..

1. make sure your requests hitting the firewall outside interface

2. Check from Server end that FW passing traffic to the server and server responding back (you can us etherreal on server to capture the traffic)

Thx

MS

sbrown · ‎12-19-2011

Sorry, still not working.

I can get to the ftp site from the outside (home system via remote) so the requests are getting through the firewall correctly - just not bouncing back to the server from the inside.