Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Could not do active ftp through ipsec vpn (SOLVED)

    Scheduled Pinned Locked Moved IPsec
    5 Posts 2 Posters 4.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • J
      jmbo
      last edited by

      Hi alll,

      i have a problem with an ipsec tunnel between pfsense and a pix.

      when the customer (pix) is trying a ftp transfert in active mode through the IPSEC tunnel, he could not list directories behind pfsense in our lan

      in passive mode it's ok, but his application could only do active ftp…

      any idea ?

      Regards

      JMB

      1 Reply Last reply Reply Quote 0
      • C
        cmb
        last edited by

        If you disable the FTP helper, does that problem go away?

        1 Reply Last reply Reply Quote 0
        • J
          jmbo
          last edited by

          hi ,

          no it doesn't help

          regards

          jmb

          1 Reply Last reply Reply Quote 0
          • J
            jmbo
            last edited by

            Hi ,

            i have found a solution. I have created a rule to allow ftp from our lan to the lan of our customer like this:

            TCP  <our ftp="" server="" ip="">  *    <customer lan="" net="">  1024 - 65535  *

            hope this could help

            regards

            JMB</customer></our>

            1 Reply Last reply Reply Quote 0
            • C
              cmb
              last edited by

              Oh, well yeah that'd help.  :)  I was assuming you had the proper rules in place and thinking it possibly was a FTP proxy related issue (though VPN subnets are supposed to bypass that, obviously that's working correctly).

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.