Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » No reply yet!!!!I 1-to-1 Mapping of a Public Address to a Private Address?
  •  
dgorman

Messages: 20
Karma: 0
Send a private message to this user
I am ftping remotely from Dos to the outside ip of my win2000 server which maps to the inside ftp server.
I can connect ok but if i do an ls it just hangs..
the deub log just gives the following when i close the dos window

24/Sep/2007 17:11:25] {ftp_handler} [ 399779 ] ftp_read_command(): recv() failed, code 10054
[24/Sep/2007 17:11:25] {ftp_handler} [ 399779 ] cleaned

Its definately the firewal as i can do it over isdn not going through the firewall.
Can I get a fix or possible solution.

Rule
Ftp in
Source = my outside
Destinatin=firewall
Service =ftp
Transaltion=map to ftp server

ftp out
source =ftp server
destination=any
service =ftp
Transaltion outgoing interface nat

no protocl inspector


  •  
Pavel Dobry (Kerio)

Messages: 5245
Karma: 251
Send a private message to this user
dgorman wrote on Mon, 08 October 2007 12:37

I am ftping remotely from Dos to the outside ip of my win2000 server which maps to the inside ftp server.
I can connect ok but if i do an ls it just hangs..
the deub log just gives the following when i close the dos window

24/Sep/2007 17:11:25] {ftp_handler} [ 399779 ] ftp_read_command(): recv() failed, code 10054
[24/Sep/2007 17:11:25] {ftp_handler} [ 399779 ] cleaned

Its definately the firewal as i can do it over isdn not going through the firewall.
Can I get a fix or possible solution.

Rule
Ftp in
Source = my outside
Destinatin=firewall
Service =ftp
Transaltion=map to ftp server

ftp out
source =ftp server
destination=any
service =ftp
Transaltion outgoing interface nat

no protocl inspector




Firewall cannot open FTP data channel if the protocol inspector is disabled. It must be enabled in incoming FTP rule otherwise you have to allow all outgoing traffic from FTP server (not just FTP service).
  •  
dgorman

Messages: 20
Karma: 0
Send a private message to this user
Hi pdobry,
Thanks for your quick response!!
Ok i have enabled protocol inspector and i still have the same problem,
From other posts i think might need a specific outgoing rule???

Previous Topic: Error IE7 & ISS orange webfilter
Next Topic: traffic prioritization
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Tue Nov 21 05:45:15 CET 2017

Total time taken to generate the page: 0.00343 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.