09-19-2016 08:00 AM - edited 03-12-2019 01:17 AM
Hey all, I have been trying to figure this out today, I have not gotten any further, I am a complete newbie to using the ASA firewall.
On one of our virtual servers in the company, I have set up an FTP server with ISS. I can access it by going through ftp://internal-ip-of-the-server.
I am trying to set up the firewall to allow outside connections to access the FTP server on the virtual server, but without luck, every time I come across a question and an answer on this site (And I have been through a lot) There are long config files that I have no idea what to do with.
I am connecting to the firewall with ASDM.
ASA Version 9.1(2)
ASDM Version 7.1(3)
Device Type ASA 5515
I followed this guide, but I still cannot access the FTP server.
http://www.petenetlive.com/KB/Article/0000772
Again very sorry for my noobish question, I am, as I mentioned, VERY new to this.
Thank you so much for your answers in advance, any help is greatly appreciated.
09-19-2016 08:12 AM
09-20-2016 03:49 AM
Hello Luke, thank you so much for taking your time to help me, it is greatly appreciated.
I have reverted the changes I made following the guide, however there are still a lot of user-made configurations on the firewall, from the previous IT guy.
The ASA is version 9.1(2) or thats what i says in the asdm.
The Ip of the internal ftp server is 192.168.15.5, the firewall is at 192.168.15.1.
I would like to post the config file, but I can't for the life of me figure out how to locate it.
Again thank you so much for wanting to help me, I spent way too much time yesterday trying to make it work.
Best
09-21-2016 10:38 PM
10-20-2016 04:36 AM
Hello Luke, again thanks for wanting to help me, I am now back in the office.
I couldn't access the ASA through SSH, but I went into the ASDM>Tools>Command Line Interface and ran the 'show run' command.
Here is the result, I have omitted encrypted passwords and IP addresses.
Result of the command: "show run";
Will I need to add something to the config ? or can I run commands to add something through the command line?
Best
09-20-2016 06:30 AM
In addition to the other post, I have referred to the ports 5000-5100 in the ISS for passive connections from the external firewall.
11-10-2016 03:49 PM
Hi Luke.
I am running an ASA 5505 V8.2
I need to allow FTP access to my FTP in the DMZ from the outside network.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: