Hi,
I'm searching for a way to open the ports >1024 for a set of servers only for FTP traffic.
There's a way to accomplish this with the Firewall policy? For example for understand that the traffic that is passed is related to FTP although is on ports different to 21 (This is the default behavior of FTP passive).
Thanks
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello,
Firewall policy look up relies on FTP session helper. You may consider to change FTP session helper port. Please find the details by following the link below:
Hi @DanieleS99
If you want to open a port for a set of servers, you can make a separate firewall policy for them and define the ports under service.
You can create a service object under Policy & Objects--> Services and then add this to the firewall policy.
Regards,
Hi @DanieleS99
Adding on to the firewall policy. Please make sure you are not enabling the Antivirus security profile as it can drop the FTP traffic.
Thank you
Verender
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1733 | |
1106 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.