Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Problems using FTP through a 2811

Status
Not open for further replies.
drew1701d

drew1701d

Technical User
Joined
May 15, 2002
Messages
295
Location
US
Hi, we have a Cisco 2811 series router and my clients cannot transfer files via FTP, thought I had the access list setup correctly, can anyone provide guidance? Think I may need to open up inbound to allow data to transfer. We can connect via FTP, but are unable to get a directory listing, so there must be another piece to the puzzle I'm missing. heres the line from the inside access list:
access-list 103 permit tcp 192.168.0.0 0.0.0.255 any eq ftp

do i need to add a line to the outside access list so data can flow in?

TIA!
 
Sort by date Sort by votes
Sounds like you need to permit the FTP data channel as well:

ccess-list 103 permit tcp 192.168.0.0 0.0.0.255 any eq 20
 
Upvote 0 Downvote
KiscoKid, close but no cigar, do i need to add a passive entry for the outside access list to allow incoming data channels?
 
Upvote 0 Downvote
How you configure FTP via access control on a router depends on 2 things:

1. The location of the FTP server and your FTP clients (LAN or Internet)
2. The kind of FTP server (passive or active)


If you can answer the above 2 questions, I can probably advise further.
 
Upvote 0 Downvote
There are no local FTP Servers, the client workstations on the LAN are trying to access external FTP servers on the internet to retrieve binary files on a regular basis. The 2811 is configured to use its built-in firewall capabilites.
I added the following line on the outside access list: access-list 104 permit tcp any eq ftp-data any gt 1024 realizing that I needed to allow the full circle since a passive FTP connection is being established.
Now command line access to FTP sites works fine after adding the above line, but going through the web browser(Firefox or IE) still does not work.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

jobsp90
  • Locked
  • Question Question
I have a issue in my office hospital network regarding using IPPBX software.
Replies
2
Views
543
DavetheChef
DavetheChef
inlsp05
  • Locked
  • Question Question
2811&2960 48 volts wiring diagram
Replies
1
Views
634
BOKA
BOKA
inlsp05
  • Locked
  • Question Question
2811 ios start with cf
Replies
0
Views
346
inlsp05
inlsp05
CPM86
  • Locked
  • Question Question
Cisco isr 4331 with IOS and sip busy fail over to 2nd sip number on pbx?
Replies
0
Views
572
CPM86
CPM86
B
  • Locked
  • Question Question
Cisco IP phone 7841 8851 unable to forward all to external number
Replies
0
Views
413
badwolf1686
B

Part and Inventory Search

Sponsor

Back
Top