ftp bounce attack
Accepted Solution
-
The bounce attack occurred when ALG FTP is enabled.NAT works with ALG FTP, and client must set PASV mode.Enable ALG FTP DISABLE ALG FTPPASV ok failACTIVE fail failWhen ftp client select Active mode, client selects an IP and port to transfer data.ZyWALL by default detects bounce attack and drop this packet.Hence, make sure the ftp client is PASV mode.5
All Replies
-
Just curious that the log message will display on USG when your local PC which behind USG try to access FTP?
The FTP bounce attack is an exploit of the FTP protocol. Here is more detail.
http://www.securityfocus.com/advisories/174
0 -
Yes, the error display, when local user try to connect remote ftp. And the connection does not occur.
I did this rule for all lan ip, and part of PC connect, other part falls with subject error.0 -
The bounce attack occurred when ALG FTP is enabled.NAT works with ALG FTP, and client must set PASV mode.Enable ALG FTP DISABLE ALG FTPPASV ok failACTIVE fail failWhen ftp client select Active mode, client selects an IP and port to transfer data.ZyWALL by default detects bounce attack and drop this packet.Hence, make sure the ftp client is PASV mode.5
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 152 Nebula Ideas
- 100 Nebula Status and Incidents
- 5.8K Security
- 290 USG FLEX H Series
- 278 Security Ideas
- 1.5K Switch
- 77 Switch Ideas
- 1.1K Wireless
- 42 Wireless Ideas
- 6.5K Consumer Product
- 252 Service & License
- 396 News and Release
- 85 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.6K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 86 About Community
- 75 Security Highlight