I am having an issue when configuring FTPS running on a Windows server that using Serv-U ftp server. The issue is when I place a port into the configuration, say in the case the port is TCP 115. I am unable to connect to the FTP session. Regular ftp works fine. I am using a Checkpoint firewall with AI. The rule base shows ftp is allowed as well as SFTP (TCP port 115). Any thoughts why I get an error that basically states that the inital configuration is being allowed and then dropped. I suspect that I needed to also supply the port ranges for data. Thanks.
You might be right. 'Normal' FTP uses two ports, one for control and another for the data. Try to find out the second port your application uses and open that too. Or two alternative methods would be
1) Stick in a temporary rule that does "pass all and log", run your FTP then examine the logs
2) Leave the firewall rules as they are but do a packet capture on your attempted FTP. Examine the trace to see what ports are used
Sorry for the pause, in case TheBishop wonders why the duplicate threads were not merged as he had correctly pointed out, it's because that is not technically possible through the forum script. So everyone please avoid opening duplicate topics! thanks