Use a lower security enforcement designed for optimal connectivity, which does not demand "newline" characters. (This enforcement also does not check port commands for bounce attacks and dynamic ports.) Define and use a new service, for example "ftp-new", using the protocol type FTP_BASIC in the following way.
Procedure: Open the Services window (Manage > Services) in the SmartDashboard GUI. Double-click "TCP Services". Create a new TCP service. Call it "ftp-new", for example. In the "Port" field, configure the port to "21" (FTP standard port). Click the "Advanced" tab, and set protocol type to FTP_BASIC. Clear the box "match for any". Use the service in the relevant rules, and install the Policy. JP -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Erin Young Sent: Tuesday, 13 June 2006 2:52 AM To: [email protected] Subject: [FW-1] Problem with FTP List Command through Firewall We are currently experiencing a problem with executing the List command to an ftp server through our firewalls running on the Nokia IP380 platform. When we connect, we are able authenticate and connect using passive mode, then the List command executes and the connection just hangs. There are no drops or errors in the firewall logs. Also, it works fine with other ftp servers. The owner of the external ftp server keeps insisting that the problem is on our side. Anyone have any similar experiences and resolutions? _________________________________________________________________ FREE pop-up blocking with the new MSN Toolbar - get it now! http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/ ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
