I don't know if this is your issue or not, but here's something I ran into that was similar. Checkpoint expects the new line command twice (\n\n) follwing a PORT command, but many FTP implementations only have one. You can stop the check for the second \n if you edit the ftp.def file. The full details are in 36.0.152763.2473228 in the knowledge base.
Short version, if this is NGX (you didn't give the version), is: Make a backup of $FWDIR/lib/ftp.def Edit $FWDIR/lib/ftp.def, and find "#define FTPPORT_NL 1". Change it to "#define FTPPORT_NL 0" Save the file, and push the policy to the enforcement point again Bruce -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Alan Choyna Sent: Wednesday, May 02, 2007 15:37 To: [email protected] Subject: [FW-1] FTP: Port command ended without a new line error Hey guru's, l seem to being running into an FTP protocol issue. l have users trying to FTP active/passive into a server, and l can see the traffic coming in fine. l do see a lot of rejected requests with the "Port command ended without a new line error". Anyone know what this is? Smart Defence config? Thanks in advance, Alan Alan C. Choyna Director of Infrastructure Pathfinder Associates, LLC <http://www.pathfinderassoc.com/>http://www.pathfinderassoc.com Internet Strategy Business Consultants <mailto:[EMAIL PROTECTED]>mailto:[EMAIL PROTECTED]<mailto:achoyna@ pathfinderassoc.com>.com Business telephone (312) 372-1058 ext 6003. Mobile (773) 255-6662 ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ************************************************************************* The information contained in this communication is confidential, is intended only for the use of the recipient named above, and may be legally privileged. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please resend this communication to the sender and delete the original message or any copy of it from your computer system. Thank you. ************************************************************************* ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
