Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
683
Views
0
Helpful
1
Replies

ASA 5505 FTP issues

David Shearing
Level 1
Level 1

‎09-30-2011 12:48 AM - edited ‎03-11-2019 02:32 PM

Hi,

I was wondering if anyone could make sense of the attached screen shot of the real time log?

We have a music system which moves updated tracks and changes using FTP, but we have never been able to get them working over VPN using ASA firewalls.  Using a PIX 501s they work fine and i have just upgraded the ASA to 8.2(5) but it still have the problem.  Traffice seems to start and then get dropped leaving the files with a 0byte size, although aleast 1 small file is always sucsessful.

Any help would be appriciated

Thanks

David

Labels:
Preview file
277 KB
0 Helpful
1 Reply 1

mirober2
Cisco Employee
Cisco Employee

‎10-07-2011 06:26 AM

Hi David,

The logs show that a device on the inside of the network is sending a reset on the control channel (TCP/21). Because your ASA is configured for FTP inspection, it also closes the child (data) connections along with it.

I would suggest setting up packet captures to determine which device is actually sending the reset, and then find out why. Here is a guide that will help with ASA captures:

https://supportforums.cisco.com/docs/DOC-1222

-Mike

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card