ftp bounce attack
Master Member
Accepted Solution
-
The bounce attack occurred when ALG FTP is enabled.NAT works with ALG FTP, and client must set PASV mode.Enable ALG FTP DISABLE ALG FTPPASV ok failACTIVE fail failWhen ftp client select Active mode, client selects an IP and port to transfer data.ZyWALL by default detects bounce attack and drop this packet.Hence, make sure the ftp client is PASV mode.5
All Replies
-
Just curious that the log message will display on USG when your local PC which behind USG try to access FTP?
The FTP bounce attack is an exploit of the FTP protocol. Here is more detail.
http://www.securityfocus.com/advisories/174
0 -
Yes, the error display, when local user try to connect remote ftp. And the connection does not occur.
I did this rule for all lan ip, and part of PC connect, other part falls with subject error.0 -
The bounce attack occurred when ALG FTP is enabled.NAT works with ALG FTP, and client must set PASV mode.Enable ALG FTP DISABLE ALG FTPPASV ok failACTIVE fail failWhen ftp client select Active mode, client selects an IP and port to transfer data.ZyWALL by default detects bounce attack and drop this packet.Hence, make sure the ftp client is PASV mode.5
Categories
- All Categories
- 430 Beta Program
- 2.6K Nebula
- 163 Nebula Ideas
- 112 Nebula Status and Incidents
- 6K Security
- 355 USG FLEX H Series
- 292 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.6K Consumer Product
- 261 Service & License
- 407 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 82 Security Highlight
