%PIX-4-406002: FTP port command different address: IP_addr(IP_addr) to IP_addr on interface int_name
Explanation A client issued an ftp port command and supplied a port lesser than 1024 (in the well-known port range typically devoted to server ports). This is indicative of an attempt to avert the site's security policy. PIX Firewall drops the packet, terminates the connection, and logs the event.
Action None required.
That's cisco's description of your error message; however, FTP is below 1024, so I don't understand the description.
I saw this explanation before, but it's like you said ftp is below 1024. However my FTP server instructs the client to use a data channel in the range 22000-22200 and it used to work before the PIX installation( only router ACL).
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...