Tom's Hardware > Forum > General Networking > Firewall > Netscreen FW and FTP traffic on non-standard port

Netscreen FW and FTP traffic on non-standard port

Forum General Networking : Firewall - Netscreen FW and FTP traffic on non-standard port

Tom's Hardware: Over 1.4 million members in 6 different countries available to answer all your high-tech questions. Sign up now! Its free!

Ask the community Add a reply

Bottom Search this thread

FW: ns100 os2.6.0
FTP: msftpsvc

ftp is configured on the server to accept on port 28 (tested internally, works)
the ns is configured to allow all traffic to the ftp serv's MIP
the ns is configured: set ftp data-port any

ftping from outside times out every time on that port, from bftp, msftp, and in unix.

the ns doesnt even log the session/drop in debug. there is no record of the attempt.

does anyone have any idea whats goin on???

thanks,

- Space

Add a reply

set your flow filters to the ip address of the machine you are sourcing from and then do a debug flow basic... start your ftp session... once it hangs up... press esc and get db stream... read the output and see what is being dropped.

Quote :

Reply to El0him

done, however:

****** <six digit number>: <self> packet received ******

is all that I recieve from the dbug. i tried to do this with tcp as well and cant find a reference to port 28 or the trusted ip anywhere. im just going to ditch using alternate ftp porting an push for secure ftp.

thanks el0him.

- space

Reply to spacecoyote

What are they using for a ftp client?

Fireftp for firefox give you to option to select any port as well as passive if needed.

Reply to blue68f100

apache on a very minimal unix kernel, cant run anything too complex, plus there is no gui. in any case apache can specify the port (and is) and can be programmed for passive mode (and it is). thanks anyway

- space

Reply to spacecoyote

NO... you should get something like this:

ns1-> Debug flow off
get db stream
****** 59463.0: <internet/ethernet1> packet received [60]******
ipid = 22304(5720), @d7813870
ethernet1:192.168.0.1/50553->192.168.0.14/22,6
can't accept it, return -1
drop pak
send no session packet
flow_if_ip_send: bb05:192.168.0.53->224.0.0.5,89 => ethernet6(68) @c7c8a6f0
Send to ethernet6 (82)
ns1-> debug flow basic
ns1-> Debug flow off
get db stream
****** 59463.0: <internet/ethernet1> packet received [60]******
ipid = 22304(5720), @d7813870
ethernet1:192.168.0.1/50553->192.168.0.14/22,6
can't accept it, return -1
drop pak
send no session packet
flow_if_ip_send: bb05:192.168.0.53->224.0.0.5,89 => ethernet6(68) @c7c8a6f0
Send to ethernet6 (82)
****** 59484.0: <internet/ethernet1> packet received [60]******
ipid = 22307(5723), @d780d070
ethernet1:192.168.0.1/50553->192.168.0.14/22,6
can't accept it, return -1
drop pak
ns1->

The debug flow basic will show you how the packet flows through the netscreen based on a filter.

Reply to El0him

Ask the community Add a reply

Tom's Hardware > Forum > General Networking > Firewall > Netscreen FW and FTP traffic on non-standard port

Go to:

Help |
Forum rules

There are 1192 identified and unidentified users. To see the list of identified users, Click here.

Page generated in 0.124 seconds

Please mind

You are about to answer a thread that has been inactive for more than 6 months.
If you still wish to proceed, please ensure that your posting is original and does not duplicate or overlap any prior responses to this thread.

Add a reply Cancel

Focus On

Netscreen FW and FTP traffic on non-standard port

Forum General Networking : Firewall - Netscreen FW and FTP traffic on non-standard port

Please mind