Tonatiuh,
Most likely you can connect and login, but trying to
do a directory listing or file xfer it fails. The error
comes about when FTP tries to open the DATA
port.
FTP is one of those protocols that uses
two ports to operate. The first is the control channel
and it uses(usually) port 21.
FTP appears to works just fine(connect, login, etc)
until you try and execute one of the commands that
needs to open the data channel, this is (usually
control port minus 1or 20 in my example.)
Look in Policy->Properties->Services tab and check
the "Enable FTP PORT Data Connection" or modify
your rulesbase to allow the data channel.
hth,
Robert
- -
Robert P. MacDonald, Network Engineer
e-Business Infrastructure
G o r d o n F o o d S e r v i c e
Voice: +1.616.261.7987 email: [EMAIL PROTECTED]
>>> Tonatiuh Pena Centeno <[EMAIL PROTECTED]> 7/17/00 8:05:27 PM >>>
>
>Hi,
>
>Recently, we began to experience problems when trying to initiate FTP
>sessions from our Internal Net to our DMZ. When we check the log, it
>appears the following message:
>
>
>Rule 0: Reason: tried to open other host port
>
>Thank you,
>
>Tonatiuh Pena
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
