I am recently upgraded to 6.1(4) and I noticed that I have an issue with ftp. When ever I connect to an FTP server on the internet I can not dowload anything. I am also using AAA with Cisco ACS 2.6(4). I found a bug on the cisco site (CSCdx81167)
Sympton: FTP session would fail if PIX(v6.2.1) AAA is enabled and client connect to a FTP site with long banner
(approximate 600bytes or longer) before or after logon prompt. This is because the banner was truncated, and the
truncated portion includes the FTP response code such as '230' and the CR/LF. Solution: Remove the banner size limitation.
The only question is how to remove the banner size limitation. I tried no fixup protocol 21 and it did not work. Am I missing something?
the banner size limitation is within the pix code, not something that can be configured. the solution relates to the engineering fix within the code. you will need to obtain a fixed version when it becomes available to prevent this problem.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...