Configuring Fortigate OS4 for FTPS

Posted by Paul on Server Fault See other posts from Server Fault or by Paul
Published on 2010-04-24T05:08:59Z Indexed on 2010/04/24 5:13 UTC
Read the original article Hit count: 662

Filed under:
|

I configured iis7 ftp to allow ssl connections. I set the ssl firewall to use ports 50000-50050.

If I set up a custom service on my fortigate firewall for ftps with source ports 990-50050 and destination ports 990-50050, set it to a firewall policy and connect from a client it connects and works successfully.

If I create a service FTPS Control with source port 990 and destination port 990 and another service,FTP Data with source ports 50000-50050 and destination ports 50000-50050 add them to a group FTPSSL, replace the ftps policy with FTPSSL and try connecting it tries to connect to port 990 and eventually times out.

Is there a way to configure the service to only use the ports I need and not every port from 990 up?

© Server Fault or respective owner

Related posts about firewall

Related posts about ftps