Some of our users need to access an external ftp server. Therefore, we
setup a rule to use port 20 and 21. However, the ftp server responds their
request using random high ports, therefore, we need to setup a "returning
rule" allowing the ftp server coming back using high-ports (>1023).
Is it typical for ftp server's returning packets using random high ports?
Is it "safe/secure" to setup such rule on checkpoint firewall?
Any implications that we need to be aware of?
Any pointers are appreciated.
Thanks,
Ivan
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
