Location 1 (HQ):
Lancom 1721 VPN
VPN-tunnel to Location 2
Software xy connect via FTP over WAN to Location 2 to 192.168.1.x (yeah i know, VPN-tunnel and establish unsecure ftp over external ip -.-)
Lancom 1781 with Port forwarding for port 21 to an 192.168.xxx.x
Now we kicked out the Lancom 1721 on our HQ. We use a Control now with IPSec VPN to Location 2
Now the Problem:
since we have the Kerio Control, Software XY can not establish a FTP Connection to 192.168.xxx.x (something with RENAME error). Same with WAN connection and VPN-tunnel.
If i change the port forwarding of the Lancom 1781 on Location 2 from port forwarding 21 to Port remapping 2222->21
i can establish the FTP connection without any problem.
i found this log-entry:
IPS: Port Scan, protocol: TCP, source: 192.168.yyy.yyy, destination: LOCATION2, ports: 53058, 53064, 53065, 2122, 53066, 53067, 53068, 53069, 53070, 53071, ...
I thought intrusion prevention blocks something, so i deactivated it, but still the same error.
I also deactivated Web Filter, but with the same result.
(anti-spoofing is also deactivated)
So where does Control block my FTP connection?! I have no traffic rule for FTP here that blocks anything. The VPN-network traffic is allowed for everything too.
Kerio discussion forums are intended for open communication between forum
members and may contain information and material posted by members which may
be useful in learning about Kerio products. The discussion forums are not
intended to provide technical support for any specific product. Any
information implied or expressed in the discussion forums is that of the
posting member. Kerio is in no way responsible for the information posted in
the forums, or its accuracy. Kerio employees may participate in the
discussions, but their postings do not represent an offical position of the
company on any issues raised or discussed. Kerio reserves the right to
monitor and maintain the forums to promote free and accurate exchange of