Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

FTP

Initiating an FTP session from inside a NAT'd network (allowing all outbound) through a PIX to an external FTP site, I connect but get no username or password prompt. Using Dial-Up account I DO get these. I have fixup protocol ftp 21 in my config on the PIX.

Any ideas why I can't get a username or password prompt?

1 REPLY
New Member

Re: FTP

Check your AAA statements on your pix.

For example:

aaa authentication exclude ftp inside 10.1.1.2 255.255.255.255 0.0.0.0 0.0.0.0 TACACS+

PIX will not prompt user 10.1.1.2 for authen.

You may also need to add this if your dial-up is not inside:

aaa authentication include ftp inside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 TACACS+

NAT has nothing to with this.

Michael P.

82
Views
0
Helpful
1
Replies
CreatePlease login to create content