In article <lFCum.12650$7G7.6927@kovat.provo.novell.com>, Mcu wrote:
> I also had trouble with setting up FTP proxy accelerator, but got the
> FTP-PORT_PASV_ST exception with source interface = any and destination
> interface = public. Why? I don't follow this, but it doesn't matter. I
> didn't see this easy instruction anywhere. Put it here to help others.
> Your exceptions were the clue that got me going, where they have no
> reference to the private interface. (BM 3.9)
>
Filter exceptions from private to public allow outbound traffic through
NAT that originate from hosts inside the firewall. However, traffic from
the proxy originates on the server itself, and in this case would be to
and from public. Therefore filter exceptions for proxy services should
be Source: PUBLIC and Dest: Public, and not public/private or
private/public.
Craig Johnson
Novell Support Connection SysOp
*** For a current patch list, tips, handy files and books on
BorderManager, go to
http://www.craigjconsulting.com ***
Re: FTP acceleration filter exception?
Threaded Mode
