Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Allow FTP to DMZ

I have a server on my DMZ that I want to allow people to FTP to.

I want to allow only specific IP addresses. This is what I have done and *I think* that it works, but I am seeing no hits on it.

What I have done is created access-lists below:

access-list name permit tcp host 63.0.1.2 host 34.9.35.2 eq ftp

63.0.1.2 is the clients specific IP address and the 34.9.35.2 ip address is our FTP server.

I am seeing no hits on the access-list, yet when I do that, they are able to ftp. Up until now. There is one client that I have added an access-list for and they still can't FTP. Any clue?

Am I doing this wrong or what? Any input is greatly appreciated!

SMW

1 REPLY
Highlighted
Community Member

Re: Allow FTP to DMZ

try establish icmp and ftp-data tcp traffic from client host:

access-list name permit icmp host 63.0.1.2 host 34.9.35.2

access-list name permit tcp host 63.0.1.2 host 34.9.35.2 eq ftp-data

99
Views
0
Helpful
1
Replies
CreatePlease to create content