Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
938
Views
0
Helpful
3
Replies

FTPS (FTP explicit SSLTLS)

networker99
Level 1
Level 1

‎01-07-2012 05:57 AM - edited ‎03-11-2019 03:11 PM

Can anyone tell me how to get this working  (outside host coming in though ASA 5505 running 8.4).

Thanks

Labels:
0 Helpful
3 Replies 3

mvsheik123
Level 7
Level 7

‎01-07-2012 09:02 AM

Try by opening TCP - 21 , 21000 & 21010 and use PASV mode (unless you already have the list of TCP ports).  Also, in 8.4 you need to allow ACL to 'real' ip than public ip. Check the below links.

https://supportforums.cisco.com/docs/DOC-12324

hth

MS

0 Helpful

networker99
Level 1
Level 1
In response to mvsheik123

‎01-07-2012 09:04 AM

why would I open 21 for FTPS?, 21 is for FTP

0 Helpful

mvsheik123
Level 7
Level 7
In response to networker99

‎01-07-2012 09:12 AM

21 is control channel for Explicit SSL, allowing the user's computer to send commands to the server. Now, this may be from client end in which case from inside ASAs allow outbound connection (default). You can give a try without port 21 and post back what worked for you.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card