Forum Discussion

Nimbostratus

Mar 25, 2016

Age old passive FTP questions

Just realized I posted this in discussions vs questions. Re-posting This has probably been beaten down enough at this point, but I can't seem to find the answer anywhere. Here is the setup: ...

Employee

Mar 29, 2016

Starting in 11.5.0, there is an iRule command, FTP::port, which allows you to limit passive FTP port selection to a specified range.

You may need to specify a port range with greater than just ten ports - I would recommend at least several times the number of TMMs on your system. Unless you have near-fully populated VIPRION 4800, 100 ports should be fine. You can experiment, but you should have at least the same number of ports as the number of TMMs on your system.

You may also specify a smaller number of ports and disable CMP for that virtual server, but doing so is not recommended as it can impact performance and limit capacity.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Age old passive FTP questions

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

HA Failover between two Datacenters

AST Configuration Assistance

Identify which virtual servers are using a specific SSL certificate

APM VPN LDAP POOL can't contact ldap server.

Users account sessions mixed up..

Related Content

Cryptocurrency Scams Unmasked: Protecting Yourself in the Digital Age

Especial Load Balancing Active-Passive Scenario (I)

Especial Load Balancing Active-Passive Scenario (II)

New Age Netiquette

Site Launch Frequently Asked Questions

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS