How to configure ASA 5520 for transparent ftp

Answered Question
Jan 12th, 2010

Hello.  We have a ASA 5520 and we have all kinds of trouble on our ftp connections.  FTP servers disconnect immediately when we issue a data connection like "dir" or "get".  FTP client is in the inside from a Windows Command line.  Windows ftp does not really support passive mode.  If we use a perl script, the data transfer will complete.  What can we configure the ASA so that active mode is possible?  Or, how can we configure the ASA so that there is no port translation will occur?  Thanks in advance.

I have this problem too.
0 votes
Correct Answer by Joe B Danford about 6 years 11 months ago

Try adding the FTP inspect to your policy. Here is a link for it.

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00807ee585.shtml

policy-map global_policy
class inspection_default
  inspect ftp

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
mlewis1 Tue, 01/12/2010 - 14:16

Thank you!  That did it.  We can now use ftp from Windows command line.

Actions

This Discussion

Related Content