Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Allow FTP to DMZ

I have a server on my DMZ that I want to allow people to FTP to.

I want to allow only specific IP addresses. This is what I have done and *I think* that it works, but I am seeing no hits on it.

What I have done is created access-lists below:

access-list name permit tcp host 63.0.1.2 host 34.9.35.2 eq ftp

63.0.1.2 is the clients specific IP address and the 34.9.35.2 ip address is our FTP server.

I am seeing no hits on the access-list, yet when I do that, they are able to ftp. Up until now. There is one client that I have added an access-list for and they still can't FTP. Any clue?

Am I doing this wrong or what? Any input is greatly appreciated!

SMW

  • Other Security Subjects
1 REPLY
New Member

Re: Allow FTP to DMZ

try establish icmp and ftp-data tcp traffic from client host:

access-list name permit icmp host 63.0.1.2 host 34.9.35.2

access-list name permit tcp host 63.0.1.2 host 34.9.35.2 eq ftp-data

92
Views
0
Helpful
1
Replies