Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
479
Views
5
Helpful
3
Replies

TFTP 'state' failing

neil_titchener
Level 1
Level 1

‎07-06-2010 10:12 PM - edited ‎03-11-2019 11:08 AM

Hi all,

We are running a PIX 515e with  Cisco PIX Security Appliance Software Version 8.0(4). When running TFTP session through the firewall the firewall doesn't recognise the return traffic as part of the TFTP connection.  I understand how the TFTP  protocol works so I don't need any info on that but has anyone else experienced this.  Is there a particular setting that needs to be enabled or is there a work-around?

Cheers

Labels:
0 Helpful
3 Replies 3

Jennifer Halim
Cisco Employee
Cisco Employee

‎07-06-2010 10:49 PM

Yes, you can enable "inspect tftp" under your global_policy and that would allow the return tftp traffic.

Hope that helps.

neil_titchener
Level 1
Level 1
In response to Jennifer Halim

‎07-07-2010 08:46 PM

Thanks for the quick reply.  Where would I find Global-policy in ASDM 6

.1?  I've checked the Inspect Maps but there isn't one for tftp.

Cheers

0 Helpful

Jennifer Halim
Cisco Employee
Cisco Employee
In response to neil_titchener

‎07-07-2010 09:09 PM

From ASDM:

Configuration --> Firewall --> Service Policy Rules --> highlight inspection_default --> click Edit --> Rule Actions tab --> scroll down and tick/enable TFTP

Hope that helps.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card