Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

PASV FTP blocked outbound

A site with a 506 PIX 6.1(2) has an odd issue with FTP outbound

Passive mode seems to fail for clients reaching all ftp sites on internet.

Active mode still works, however. Both PAT and NAT machines are effected

Firewall has fixup protocol ftp 21set.

1 REPLY

Re: PASV FTP blocked outbound

Is fixup strict enable or just fixup?

Here are some potential bugs: CSCdr20233 & CSCdy78026

Does shop xlate and show conn show connections going through? Any acls?

You can do a debug fixup tcp and debug packet (as always use with caution).

This is a good link to help troubleshoot: http://www.cisco.com/univercd/cc/td/doc/cisintwk/itg_v1/tr1925.htm#xtocid8

Hope it helps.

Steve

116
Views
0
Helpful
1
Replies
CreatePlease to create content