I'm performing basic testing of ACE (ACE20-MOD-K9) on a Catalyst 6509 switch with redundant Supervisor Engine 720.
The switch runs Native IOS version 12.2(18)SXF12a. ACE software Version is 3.0(0)A1(4a).
I'm testing an ACE context. Its config is as attached.
Client IP : 172.16.20.100
VIP : 172.16.10.100 tcp eq ftp & 172.16.10.100 tcp eq ftp-data
Real Server : 172.16.30.100
The client can establish FTP connection to the VIP 172.16.10.100. But when it tries to execute the "ls" command, the files were not listed and I received the following error:
Connected to 172.16.10.100.
220 3Com 3CDaemon FTP Server Version 2.0
User (172.16.10.100:(none)): testuser
331 User name ok, need password
230 User logged in
200 PORT command successful.
226 Closing data connection
Also attached is the output of "show conn" on the ACE. It looks like Active FTP to me. Can you explain why the FTP data connection cannot be established successfully across the ACE context? What did I miss in my config? Since it is Active FTP, as far as I know the server initiates the data connection. Does the issue have anything to do with the fact that real servers can't initiate outbound connection unless NAT is configured?