Question about D-Link DFL-800 Firewall

1 Answer

FTP problems. We have a problem to FTP to our FTP server outside the network. The problem accours if we try to send more then 1 file. Between the both files FETCH ftp disconnect our connection to the FTP server. We have tryed to connect outside this network and have no problems wih that.  We have put up the FTP_passtrough rule from LAN to CORE. Any idea what could be te problem?

Posted by on

1 Answer

  • Level 2:

    An expert who has achieved level 2 by getting 100 points

    MVP:

    An expert that got 5 achievements.

    Novelist:

    An expert who has written 50 answers of more than 400 characters.

    Governor:

    An expert whose answer got voted for 20 times.

  • Expert
  • 152 Answers

There are 2 ports used for FTP. They are 20 and 21. When you initiate a connection that occurs on port 21, but data traffic is on port 20. Your firewall sees your outside FTP server trying to 'initiate' a connection on port 20 and breaks the connection to that IP address.
What you need to do is either use 'passive' ftp or open both ports 20 and 21 for ftp traffic in the firewall.

Posted on Apr 29, 2009

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

1 Answer

I need help with cisco asa 5505 ssl vpn.. ssl


The total sum of the Inside/Outside/ and pool address add up to 5,265. Subtract 10% and multiply by 260 to get the gender aspect of the original formula. Move the Network address to Google and download the residual code offered by the program that appears in the open window. Enter the code in the appropriate space provided and this will solve the problem by late 2015.

Oct 09, 2013 | Cisco ASA 5505 Firewall

1 Answer

How to connect to my PIX 501 and use Windows Remote Desktop?


Here's a real simple problem to your remote access problems.
Go to: http://www.logmein.com
Sign up for a free acct, download/install their free software on your Server.
Now go over to your laptop, login to your new logmein acct.
In the next page, you'll see your Server listed. Click on it - follow instructions to connect.
This will tunnel through whatever stuff you have on your network!
Trust me - esp. in your scenario, this is *by far* the *simplest remote connect you'll ever perform! And it just .... works! Everytime.

gurutim

Mar 16, 2009 | Cisco PIX 501 Firewall

1 Answer

Pix 515E inside to outside translation problem


Dear Kiran,

What is the name assigned for isp 1 as well as isp2.

for your reference kindly find the sample configuration......
ISP 1:
interface ethernet 0 100 full
nameif outside security-lvl 0
ip address outside 203.193.129.132 255.255.255.240.
nat (inisde) 1 (local network)
global (outside) 1 203.193.129.133
route outside 0 0 203.193.129.129.1.

regards,
mani.S

Mar 09, 2009 | Cisco PIX 515E Firewall

1 Answer

Ploblems with dmz-outside (webpage). pix


Remove this line:

static (DMZ,INSIDE) 10.10.0.0 10.10.0.0 netmask 255.255.255.0

You don't need a translation going from a lower security level to a higher one. You will also need a nat line for the dmz so that pc's on the dmz will be translated outbound. The only connection that will work on the dmz is the webserver when he's sending traffic outbound with a source port of 80. Something like:

nat (DMZ) 101 10.10.0.0 255.255.255.0

Other than that, it looks like it should be working. You've got permission, a route, and a translation. Maybe "clear local-host 10.10.0.2" to get rid of any bad xlates and try again. Check debg level syslogs, run packet captures, "clear asp drop" then "show asp drop" after an attempt?

Feb 28, 2009 | Cisco PIX Firewall 506

1 Answer

Hello


SOCKS is an Internet protocol that facilitates the routing of network packets between client-server applications via a proxy server. SOCKS performs at Layer 5 of the OSI model - the Session Layer (an intermediate layer between the presentation layer and the transport layer).

Clients behind a firewall may connect to a SOCKS proxy server in order to access external services through the firewall. Such a proxy server controls the eligibility of the client to access the external server and, if the client has eligibility, passes the request on to the server. SOCKS can also be used in the opposite way, allowing the clients outside the firewall ("exterior clients") to connect to servers inside the firewall (internal servers).

SOCKS software

* Kernel SOCKS Bouncer ksb26 (Kernel Socks Bouncer) is a Linux Kernel 2.6.x Loadable Kernel Module that redirects TCP connection (to user-defined target hosts) through socks 4/5 chains.
* SS5 Socks Server is an open-source SOCKS4/SOCKS5 server.
* Dante is an open-source SOCKS4/SOCKS5 implementation with commercial support developed by Inferno Nettverk A/S.
* OpenSSH allows dynamic creation of tunnels, specified via a subset of the SOCKS protocol, supporting the CONNECT command.
* WinSocks is a light-weight SOCKS4/SOCKS5 server developed by Proxy Labs.
* SOcat Multipurpose relay (SOcket CAT): includes socks4, and socks4a functionality (Linux / Mac)
* FreeCap Socksifyer for Windows, any App can run its network traffic transparently via a SOCKS or HTTP proxy.
* Simple Socks Server for Perl - SSS is a Simple SOCKS Server written in perl that implements the SOCKS v5 protocol.
* Sun Java System Web Proxy Server is a caching proxy server running on Solaris, Linux and Windows servers that supports HTtp://S, NSAPI I/O filters, dynamic reconfiguration, SOCKSv5 and reverse proxy.
* BarracudaDrive Web Server - commercial SOCKS HTTP HTTPS tunnel/server, available for Windows, embedded Linux and Mac OS X (PowerPC)
* DeleGate is a multi-purpose application level gateway and proxy server which runs on multiple platforms. Beside SOCKS it also supports HTTP(S), FTP, NNTP, SMTP, POP, IMAP, LDAP, Telnet, DNS and many more.

Jan 05, 2009 | Network Security & Firewall Devices

2 Answers

Bootmgr Problem


hello I see your comment having some issues also with the same type of unit Nokia IP350 but cant logon ... missing original password ... Could you help me to reset password or send me a copy of the manual

Regards

Oct 21, 2008 | Nokia IP350 (NBB335F000) Firewall

1 Answer

How can i block torrent download with asa 5505 firewall????????


It is not possible to block the BitTorrent protocol, as the client applications have the ability to use different port numbers.  I suggest one of the following courses of actions:
1)  Added deny entries to your outbound access-list that block the specific IP addresses of the torrent trackers.  For example: tracker.thepiratebay.org = 77.247.176.145
tv.tracker.thepiratebay.org = 77.247.176.154
tracker.mininova.org = 87.233.147.137

2)  Re-configure your outbound access-lists to allow only services required for business activities.  For example, allow only http, https, and ftp, instant messaging from all your network.  Allow only dns from your DNS servers.  Allow only smtp from your mail server.

Aug 21, 2008 | Cisco ASA 5500 Firewall

1 Answer

Sonicwall firewall has trojan attack.


what kind of fire wall and anti virus are you useing ? I have found that the best you can find is AVG. 8.0 if you use it and the Windows Denfender together they are the best,AVG can find all trojans downloaders loops lops and any kind of worms imagen,alot of viruses we have cleaned seem to hide behind the windows files themselves,as you corner them they will pop up. Where as if the mcfee and norton are constally dormit they don't seem catch all the new viruses,try switching for an instant,and Avg will pretty much corner any kind of viruses you have and send me the out come of what is happened please thank you lala linda

Jun 03, 2008 | SonicWALL PRO 230 Firewall

1 Answer

Cisco asa5505 problem


You seem to have the last resort (o.o.o.o) set to VLAN1 which is set as an inside interface.
Is VLAN1 connected to the outside router or internet backbone?
If not, change the last resort to the outside Ethernet port.

Apr 16, 2008 | Cisco ASA 5500 Firewall

2 Answers

Sonicwall Pro 300 DMZ Problem


If you're within a network and try connecting to computers on it with the WAN public IP, it simply won't work - you must use the network IP. On an external Internet connection, it should connect fine to the public IP. If you have access to an external machine (remote desktop), or if you know of an FTP proxy, you can try it that way. I also believe http://www.webftp.co.uk/ a web based FTP client would act as somewhat of a proxy, you could try that with the public IP and see how you go.

Aug 09, 2007 | SonicWALL PRO 300 Firewall

Not finding what you are looking for?
D-Link DFL-800 Firewall Logo

Related Topics:

934 people viewed this question

Ask a Question

Usually answered in minutes!

Top D-Link Network Security & Firewall Devices Experts

Rick Johnson
Rick Johnson

Level 2 Expert

84 Answers

john smith

Level 2 Expert

366 Answers

Alex Krenvalk

Level 2 Expert

401 Answers

Are you a D-Link Network Security and Firewall Device Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...