Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Users might experience few discrepancies in Search results. We are working on this on our side. We apologize for the inconvenience it may have caused.
New Member

PIX fixup and multiple FTP servers on a single public IP

We are having some devices installed that need to be publicly accessable as FTP servers. One device will exist at each of our 5 sites. We have a single

public IP address left and these devices are all on seperate subnets behind a PIX firewall and WAN router.

For example

ISP

PIX

(192.168.0.0/24) network

WAN Router

FTP server 1 - 192.168.1.1

FTP server 2 - 192.168.2.1

FTP server 3 - 192.168.3.1

FTP server 4 - 192.168.4.1

FTP server 5 - 192.168.5.1

Can the PIX be configured for FTP application inspection on multiple ports?

As well as handling the ports/access-list for the data channel will it create the translation dependant on which device the client is talking to?

Will this only work on version 7 upwards of PIX?

Thankyou

1 REPLY
Bronze

Re: PIX fixup and multiple FTP servers on a single public IP

We can configure FTP Inspection on Multiple ports.Multiple ports for FTP by entering separate commands fixup protocol ftp 2100,fixup protocol ftp 4254,fixup protocol ftp 9090.So from here PIX listens for FTP on ports 21,2100,4254,9090.Refer the URL

http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a00800eb727.html#wp1063623.The Ports are created based on the device the client is talking to.

131
Views
0
Helpful
1
Replies
CreatePlease to create content