Hi, Is there any trick to allow passive FTP inbound? I have set a security rule to allow APPLICATION-FTP inbound, and a NAT rule to let Port 21 inbound. Works fine for ACTIVE, but PASSIVE fails at the LIST command. Help would be appreciated. Thanks. Dean
... View more
Hi, I am in the process of migrating internet connections, at the moment we have a PA-500 with 3 active internet connections, traffic is routed between different connections using policy routing. This is fine for outbound traffic, however inbound does not work as the traffic attempts to return via the default gateway. There seems to be no implementation of Reverse Path Forwarding (RPF) to return the traffic for the origin interface. I need to know if there is a way to set this up. The problem at hand is our mail and webmail is coming in on the "eth0/1" interface which will soon be decommisioned, however during the interum (DNS propergation) we need to have both eth0/1 and eth0/3 accepting traffic for https, smtp, and smtps simaltaniously with the default route going via eth0/3. I have attempted to try and return the traffic via PBF with no success. My goal is: Default Route - eth0/3 Incoming traffic on eth0/1 goes to internal network, then returns via eth0/1, NOT eth0/3 Please help before I loose all my hair Dean.
... View more