It appears we’re still having a problem with firewalling our servers, and an inability of some users to get in via FTP. I gather that passive works, but is there any way to get FTP fully functional?
enable port 20 tcp/udp (ftp data) for active ftp connections.
Thanks, that seems to have done the trick.
I have a bit of a related oddity. I’ve had to open up port 20 as a src-port so that my servers can do ftp transfers. Is this normal?
yes