Problems with FTP
While FTP has been around since before the Internet ran on TCP/IP, every client and server seems to act a little differently. Stateful firewalls like FireWall-1, which expect things to happen only in certain ways, get tripped up by clients and servers that are RFC compliant, but choose to implement the RFCs differently. The following FAQs are related to FTP problems.
6.29. Problems with Newline Characters
Some FTP implementations send a PORT command in one packet and the newline character in another. By default, FireWall-1 assumes the PORT command and the newline will appear in the same packet. To enable checking for this, uncomment out the bolded #define statement (i.e., remove the // characters at the beginning of the line) ...
Get Essential Check Point™ FireWall-1® NG: An Installation, Configuration, and Troubleshooting Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
