Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1300
Views
0
Helpful
3
Replies

Exposing FTP server to the internet on a NGFW Firepower 1010

thediscountgeeks
Level 1
Level 1

‎12-29-2021 07:47 PM

I have a firepower 1010 managed with FDM and have been trying to expose my ftp server to the web and cant get it out there for nothing. 

I have allowed access from the ftp server to the outside interface on port 21 and vice versa.

Then i setup NAT to translate the ftp server to the outside interface and vice versa but no luck.

Its a freeNAS server with the FTP service on and its works fine internally.

I also have my ISP fiber modem in passthru mode.

What could I be missing here? (Screenshots attached for reference)

Preview file
35 KB
Preview file
55 KB
0 Helpful
3 Replies 3

Marvin Rhoads
Hall of Fame
Hall of Fame

‎01-02-2022 03:47 AM

When traffic is initiated fro man outside host it will be from an ephemeral port (1025-65534), not tcp/21. So allow any source port destined for the FTP server's address.

0 Helpful

thediscountgeeks
Level 1
Level 1
In response to Marvin Rhoads

‎01-02-2022 12:26 PM

that didnt work either, also nmap says my host is not up and no ports are open.  Is there something that is blocking it inheritly?  This is a new setup from default

0 Helpful

thediscountgeeks
Level 1
Level 1
In response to Marvin Rhoads

‎01-11-2022 07:10 AM

Additionally, I cannot ping my public IP either.  I have my ATT modem in passthru mode.  If I use the ATT modem I can set everything up and use port forwarding and it will work but I will have to move the entire network onto the ATT device and lose the firepower security features

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card