Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

FTP through ASA

Hi all,

We just replaced our pix 520 with 6.3 with a ASA running 7.02.

We experienced a lot of problems with FTP connections.

I had to allow source port's 20 and 21, on top of the normal rule who allows port 21.

The control channel was no problem, but the data channel could not be set up.

Still after this rules some ftp connections could not be set up.

Now we also added "inspect protocol ftp 21".

Since we allowed this, all seems to work fine. But I still want to get rid of the source port's who are still open.

Anyone seen this before?


Re: FTP through ASA

On the inbound (called) side, add the isdn incoming-voice data command under the Serial:23 interface. Remember that all incoming voice calls will be treated as data calls. If you also want to support modem calls on the same ISDN line, you would use the Resource Pool Manager (RPM) feature; otherwise, you could separate those two services in two different ISDN lines with different telephone numbers. Problems will occur if the two lines have the same number (they are part of a hunt group). A particular interface could either handle voice calls as modem calls or voice calls as data-over-voice calls, but not both.

CreatePlease to create content