Skip to main content
scottwheldon
scottwheldon
New Member
August 13, 2018
Question

Issue with FTP

  • August 13, 2018
  • 2 replies
  • 8512 views

Hi,

I need some help with getting FTP access going please.

I have a FG60 series and a QNAP on the LAN that I want to have access going for FTP access.

I have a standard VIP setup and a Policy in place

FTP service inside the LAN works totally fine.

I have other port forwards setup fine as well, such as RDP, PPTP etc...

 

I am getting the following error message from FileZilla: Server sent passive reply with unroutable address. Using server address instead.

 

I just can;t see where/how/why its not working, going crazy.

 

EDIT on this - I am trying to do FTP over TLS, not pure unencrypted  FTP - sorry for any confusion.

 

Thankyou so much, Scott

 

    2 replies

    emnoc
    emnoc
    New Member
    August 13, 2018

    Is it a one-4-one NAT? What happening if you run pasv in debug, the server is giving an address that's not  recognizable by the  ftp-client  and probably is the internal address.

     

    Do a debug  on the client compute the given address.? Fix up  the    ftp session between server and client

     

     

    http://help.fortinet.com/...n%20helper%20(ftp).htm

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    August 13, 2018

    One published 'solution' is to disable the FTP session helper.

    scottwheldon
    scottwheldonAuthor
    New Member
    August 20, 2018

    Hi,

     

    update on this, I have fixed it.

     

    I had to change the settings in Security Profiles -> SSl Inspection to FULL SSL Inspection and then select FTPS as per the attached image.

     

    Scott

    Terms & ConditionsAccessibility statement