I am running into problems with FXP through an ASA. They (the customer) use it to FTP between FTP servers, but start this process from a client.
In this case the client and one of the FTP servers are on the inside, the second FTP server is on the DMZ.
The client starts the process, but when the connection is transferred to the FTP server the ASA (per stateful inspection) sees the different source adres in the session en stops the connection.
Completely logical, but not wanted.
Other then completely disabling FTP fixup, has anyone got a solution for this?