Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5071
Views
0
Helpful
5
Replies

FTPS through S160 webproxy ironport

saifuddin.miyaji
Level 3
Level 3

‎10-20-2011 03:11 AM

We are using S160 ironport for Web as well as FTP proxy. Now we would like to add FTPS port 990 to go through ironport. We could access the target files through filezilla without using the proxy, but cannot do it if we use the proxy.

Could someone please advise what steps are needed for this to be achieved? Policy trace shows that no policy is matching this URL and 'URL Blocked'

Regards

saif

2 people had this problem
Labels:
0 Helpful
5 Replies 5

ravmadir
Cisco Employee
Cisco Employee

‎10-20-2011 09:41 AM

You will need ensure that port 990 is listed in HTTP connect ports on the IronPort for the proxy to listen on it [GUI > websecurity Manager > Access policies > Protocols and Useragents > HTTP connect ports > Add 990].

Thanks,

Satish

0 Helpful

saifuddin.miyaji
Level 3
Level 3
In response to ravmadir

‎10-21-2011 04:31 AM

Thanks Satish,

I have added the the port 990 to the list but still it does not match. How can I for the access folicy to match FTPS protocol ?

saif

0 Helpful

Jerome Seyler
Level 1
Level 1

‎05-18-2013 02:02 PM

Hi,

FTPS is not yet supported on Ironport.

A Cisco SE told me yesterday that it was a feature request, but not committed on roadmap.

(Feature request #88573)

It would have been great for a customer project today :/

Hope this could be useful for you or another, and if you have made something working, could you please tell me quickly !

Regards,

Jerome

0 Helpful

juraj.konecny
Level 1
Level 1
In response to Jerome Seyler

‎08-17-2017 04:27 AM

Hi,

i would like to know if still FTPS is not supported on Cisco WSA. Im trying to reach FTP server, but im not successful.

This is the log from Filezilla:

Status: Connecting to example.example2.com through FTP proxy
Status: Connecting to x.x.x.x:8021...
Status: Connection established, waiting for welcome message...
Response: 220 Ready.
Command: AUTH TLS
Response: 500 Syntax error, command unrecognized.
Command: AUTH SSL
Response: 500 Syntax error, command unrecognized.
Error: Critical error: Could not connect to server

Thanks,

Juraj

0 Helpful

kussriva
Level 1
Level 1

‎05-19-2013 08:21 PM

Hi,

You can try running the FTPS using the Socks proxy:

Step 1:

Configure a SOCKS service on the proxy (by default, this will listen on port 1080)

Step 2:

Configure the FileZilla '

Generic Proxy' to communicate to the ProxySG using SOCKS on port 1080

Step 3:

Configure Filezilla to communicate to the FTP server using FTP over TLS

Regards,

Kush

0 Helpful
Customers Also Viewed These Support Documents