Re: [FW-1] FTP problems after upgrading to NG

Mon, 23 Sep 2002 06:47:16 -0700

Title: RE: [FW-1] FTP problems after upgrading to NG

John,

I had the same problem.

I came to the conclusion that the problem was encrypting the ftp traffic across a VPN tunnel between the enforcement points and the management station.  As soon as I passed ftp traffic without encryption it worked OK.  I got onto this from a statement in the Secureclient Desktop Security guide that states :

The following data are not encrypted:

*In FTP, RealAudio, and VDOLive connections, some packets are not encrypted.

These packets contain the information needed to open a back connection from the
SecuRemote Server to the SecuRemote Client.

I have not had time to investigate the impact of passive/active ftp

Regards,

Keven



-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: 23 September 2002 13:08
To: [EMAIL PROTECTED]
Subject: [FW-1] FTP problems after upgrading to NG


I am having a problems with FTP connectivity after upgrading to NG from 4.1
sp 5.

      Management station: Solaris 8.

      Enforcement: IPSO 3.5 fcs 7 vrrp pair.

Upgraded the management module to NG, enforcement points at 4.1 inbound
Ftp's working without problems.

Upgraded the enforcement points and now FTP won't work.

I can see the traffic enter the FW, go to the FTP server;  the ACK packet
leaves the FTP server, gets to the FW and disappears.



            S     S
      User ---> FW ---> FTP

                   A
            FW<---FTP

HTTP, HTTPS. SMTP traffic is fine.

Thanks for any ideas....

JPM

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================



********************************************************************

This email may contain information which is privileged or confidential. If you are not the intended recipient of this email, please notify the sender immediately and delete it without reading, copying, storing, forwarding or disclosing its contents to any other person
Thank you

Check us out at http://www.syntegra.com

********************************************************************

Reply via email to