Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have two public IP addresses both on the same network. .1 and .2. .1 is the outside interface of the pix and .2 is the statically translated address for my FTP server.The internal network only has this FTP server and nothing else. I am natting f...
I have a question.I have some clients that use old FTP software. I want to know if I want to open up access to an FTP server do I need to open both:allow eq ftpand the high port range from 1024 to 65535I am not sure if the newer IOS requires me to d...
I was wondering if anyone could provide me with some inforamtion relevant to comparing router acls with pix acls.If I am splitting two internal private networks/subnets, and I want to protect them with ACL's, should I use a firewall with ACL's to do ...
Do this: (this works for me)fixup protocol ftp 21access-list 100 permit tcp any host eq ftpaccess-list 100 permit tcp any host eq ftp-dataaccess-group 100 in interface outsidestatic (inside,outside) netmask 255.255.255.255 0 0****So it is an ACL ...
I have the following for configuration and both active and passive FTP works just fine.fixup protocol ftp 21access-list 100 permit tcp any host eq ftpaccess-list 100 permit tcp any host eq ftp-dataI know this works as I have some "legacy" ftp clien...
This is what I have done:fixup protocol ftp 21access-list 100 permit tcp any host 172.18.124.2 access-list 100 permit tcp any host 172.18.124.2 eq ftp-dataip address outside 172.18.124.1 255.255.255.0ip address inside 10.1.1.1 255.255.255.0nat (insid...
So is what Federico specified "okay", I gather from what you are saying that I need a global statement. Doesn't the static statement take care of traffic coming in and out, or do I need another statement. In short, I want the FTP box to use that 17...
