Some of our users need to access an external ftp server.  Therefore, we
setup a rule to use port 20 and 21.  However, the ftp server responds their
request using random high ports, therefore, we need to setup a "returning
rule" allowing the ftp server coming back using high-ports (>1023).

Is it typical for ftp server's returning packets using random high ports?
Is it "safe/secure" to setup such rule on checkpoint firewall?
Any implications that we need to be aware of?

Any pointers are appreciated.

Thanks,

Ivan



-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]

Reply via email to