cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1459
Views
6
Helpful
7
Replies

How to configure FTP using the ASDM

mkazam001
Participant
Participant

Can anyone please advise how to configure FTP in both active & passive modes using the ASDM for the ASA.

There seems to be more to it than simply allowing access to ports 20 & 21.

Kind regards, K Azam

7 Replies 7

johnd2310
Collaborator
Collaborator

Hi,

Have a look at the following docs:

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/113110-asa-enable-ftp-00.html

http://www.cisco.com/c/en/us/support/docs/content-networking/file-transfer-protocol-ftp/200194-ASA-9-x-Configure-FTP-TFTP-Services.html

Thanks

John

**Please rate posts you find helpful**

Thank you John but I was after the method using the ASDM.

Regards

I've created an ACL & allowed FTP from the source (remote client) to the destination (FTP server located behind the ASA) - this has been applied inbound on the outside interface.

This is supposed to work over a VPN connection but I get the attached error message when I run packet tracer.

Any ideas??...anyone?

Is the VPN tunnel you tested up? Do you have ftp inspections enabled at the service policy?

Yes, used the sh crypto ipsec sa cmd to verify vpn tunnel is up and

ftp inspection is enabled in service policy rules

Is it a site to site vpn? Does other allowed traffic work? Do you use vpn filters? 

Could you send us the relevant config (service policies, interface acl, vpn-filter)

Sorry I've not responded, been so busy with the a separate vpn issue but I will be working on this soon. Thanks for your help thus far.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: