Supporting NAT with active FTP mode

To support active mode FTP traffic from clients, you need to configure an
additional wildcard virtual server and apply an FTP profile to it. We create
this virtual server so the BIG-IP system can detect the ephemeral data port
which the client opens, and rewrite it to the SNAT address/available
ephemeral port. The BIG-IP system also listens on the address/port (that it
rewrites) and translates it to the actual address/port to which the client is
listening.

The first task in this section is to create a FTP profile.

To create the FTP profile

  • On the Main tab, expand Local Traffic, and then click Profiles. The HTTP Profiles screen opens.
  • On the Menu bar, from the Services menu, click FTP.
  • Click the Create button.
  • In the Name box, type a name. In our example, we type LSN-ftp.
  •  Configure any of the settings as applicable for your configuration. In our example, we leave the defaults.
  • Click Finished.

Next we create the virtual server.

To create the wildcard virtual server

  1. On the Main tab, expand Local Traffic, and then click Virtual Servers.
  2. Click the Create button.
  3. In the Name box, type a name. We type FTP_wildcard.
  4. In the Destination row, click the Network option button.
  5. In the Address box, type 0.0.0.0.
  6. In the Mask box, type 0.0.0.0.
  7. In the Service Port box, type 21 or select FTP from the list.
  8. Leave the Type list set to Standard.
  9. From the FTP Profile list, select profile you created in the preceding procedure. In our example, we select LSN-ftp.
  10. Optional: From the VLAN and Tunnel Traffic (or VLAN Traffic in some versions) list, select Enabled on.
    From the Available list, select the appropriate VLANs and then click the Add (<<) button.
  11. From the SNAT Pool list, select the SNAT Pool you created in Creating the SNAT Pool. In our example, we select LNS-snat-pool.
  12. Click Finished.
Advertisements

, , , , , , , , , , , ,

  1. Leave a comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: