Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

How to configure FTP inspection on a non standard port in addition to port 21.


Configuring FTP to be inspected on non standard port in addition to port 21.


To configure FTP inspection on non standard port, following configuration is required.

NOTE:- In this example we have used port 2100 for FTP inspection.

  • Create a new Class-map and match tcp port 2100 in it.

Class FTP2100
Match port tcp eq 2100

  • Now go into global_policy and call the class-map that was created before, set action to "inspect FTP" on it.

policy-map global_policy
class FTP2100
    inspect ftp

Assuming that Service-policy is already applied globally, once configure FTP inspection will start on port 2100 along with port 21.

Version history
Revision #:
1 of 1
Last update:
‎04-14-2011 01:12 AM
Updated by:
Labels (1)