PIX ignoring ACL configured rule

Unanswered Question
May 7th, 2009
User Badges:

I have a PIX running 7.2(3) that I have allowed FTP traffic to a server on the inside interface.

The "outside" interface has an ACL configured to allow the FTP/FTP Data traffic using "outside" IP address for the ftp server.

A static NAT is also configured to NAT the "outside" IP address to an "inside" IP address.

Packet tracer shows the FTP request being denied because of the implicit rule on the ACL.

Why would the permits for FTP to the IP address be ignored and the implicit rule followed? They are both in the same ACL, the permits come before the deny.

Any help would be greatly appreciated.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion