Protecting Ftp Clients - D-Link DFL-260E User Manual
Network security firewall netdefendos version 2.27.03
Hide thumbs
Also See for DFL-260E:
- Reference manual (948 pages) ,
- Log reference manual (652 pages) ,
- User manual (589 pages)
Table of Contents
Advertisement
6.2.3. The FTP ALG
•
Source Interface: any
•
Destination Interface: core
•
Source Network: all-nets
•
Destination Network: wan_ip
4.
Click OK
Example 6.3. Protecting FTP Clients
In this scenario shown below the NetDefend Firewall is protecting a workstation that will connect to FTP servers
on the Internet.
In this case, we will set the FTP ALG restrictions as follows.
•
Disable the Allow client to use active mode FTP ALG option so clients can only use passive mode. This is
much safer for the client.
•
Enable the Allow server to use passive mode FTP ALG option. This allows clients on the inside to connect
to FTP servers that support active and passive mode across the Internet.
The configuration is performed as follows:
Web Interface
A. Create the FTP ALG
(The ALG ftp-outbound is already predefined by NetDefendOS but in this example we will show how it can be
created from scratch.)
1.
Go to Objects > ALG > Add > FTP ALG
256
Chapter 6. Security Mechanisms
- Quick Links:
- The Web Interface
- The Cli
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
