I have an egress rule that permits port 22 which should include sftp. And for the
most part it works. But I had a user go to a particular sftp site useing filezilla
and the PAN 5060 identified the traffic as "Enhanced File Transfer" and
the traffic didn't hit the egress rule and was blocked. Why would filezilla/winscp
work fine - seen as plain ssh traffic - to most sites. But for one particular site
it fails with the PAN seeing it as "enhanced file transfer"? Is there any work-around
the client can do? It's an easy fix on my PAN but change control takes time and
I'm lazy. THX
Solved! Go to Solution.
Um....Ya sure that the site they were trying to hit wasn't actually using EFT instead of a more traditional SFTP server? This is an actual product and if they are running a Globalscape server then the PAN is properly identifying the traffic.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!