PIX and FTP Connection Issue

Unanswered Question
Mar 22nd, 2009
User Badges:


I have a stand alone Windows 2003 Server set up for FTP.

The server is set up with usernames and passwords required and no anonmymous login allowed.

I can successfully use it from within the office. However from outside of the network it fails to retreive the directory listing. I am receiving the error: "Server sent passive reply with unroutable address. Using server address instead".

In the PIX Config I have the following lines:

access-list outside extended permit tcp any host eq 31

static (inside,outside) tcp 31 31 netmask

Public IP of Server:

Internal IP of Server:

Any ideas on what I am missing would be great.

Thanks in advance.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
bborovac Sun, 03/22/2009 - 01:15
User Badges:

are you using tcp/31 instead of tcp/21 for ftp ?

lsittechsupport Sun, 03/22/2009 - 02:14
User Badges:

Yes, we need to have three seperate ftp servers on the one machine. So we were hoping to use ports 31/32/33.

At the moment I am just testing on 31.

Sorry should have mentioned that in the post.

vikram_anumukonda Sun, 03/22/2009 - 06:44
User Badges:
  • Bronze, 100 points or more

fixup protocol ftp 31

if you are running 7.x code

class-map FTP_31

match port tcp eq 31


policy-map global_policy

class FTP_31

inspect ftp


service-policy global_policy global



lsittechsupport Sun, 03/22/2009 - 19:26
User Badges:

Thankyou for the help.

Vikram your suggestion was perfect. Problem Solved.

Thanks Again


This Discussion