cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
423
Views
0
Helpful
1
Replies

Allow FTP to DMZ

wraights
Level 1
Level 1

I have a server on my DMZ that I want to allow people to FTP to.

I want to allow only specific IP addresses. This is what I have done and *I think* that it works, but I am seeing no hits on it.

What I have done is created access-lists below:

access-list name permit tcp host 63.0.1.2 host 34.9.35.2 eq ftp

63.0.1.2 is the clients specific IP address and the 34.9.35.2 ip address is our FTP server.

I am seeing no hits on the access-list, yet when I do that, they are able to ftp. Up until now. There is one client that I have added an access-list for and they still can't FTP. Any clue?

Am I doing this wrong or what? Any input is greatly appreciated!

SMW

1 Reply 1

chern
Level 1
Level 1

try establish icmp and ftp-data tcp traffic from client host:

access-list name permit icmp host 63.0.1.2 host 34.9.35.2

access-list name permit tcp host 63.0.1.2 host 34.9.35.2 eq ftp-data

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: