AIX的FTP问题
情况1)
PIX-1:
fixup protocol ftp 21
access-group YW_In_bound in interface inside
access-group OA_In_bound in interface OA
access-group WL_In_bound in interface outside
access-list YW_In_bound permit ip any any
access-list OA_In_bound permit ip 机器B any
access-list WL_In_bound deny any any
PIX-2:
fixup protocol ftp 21
access-group IN-bound in interface outside
access-group OUT-bound in interface inside
access-list OUT-bound permit tcp 机器A 机器C eq ftp
access-list IN-bound deny any any
ftp从机器A取机器C的文件,正常;
ftp从机器B取机器A的文件,连接速度及传输速度都很慢。
情况2)
PIX-1:
no fixup protocol ftp 21
access-group YW_In_bound in interface inside
access-group OA_In_bound in interface OA
access-group WL_In_bound in interface outside
access-list YW_In_bound permit ip any any
access-list OA_In_bound permit ip 机器B any
access-list WL_In_bound deny any any
PIX-2:
fixup protocol ftp 21
access-group IN-bound in interface outside
access-group OUT-bound in interface inside
access-list OUT-bound permit tcp 机器A 机器C eq ftp
access-list IN-bound deny any any
ftp从机器A取机器C的文件,可正常连接,但执行dir、get等命令无响应;
ftp从机器B取机器A的文件,正常。
请老师指点是何原因。
附件
-
ftp问题.jpg
(17.21 KB)
-
2006-9-21 17:00
附图
