FTPS VIP creation

Question

Hello All,&nbsp;
I need a detailed information of how to create VIP for FTPS communication for two backend servers in my F5 device. Which ports do I need to allow for this passive FTP communication in F5 and Firewall. How can I know on which ports FTPS passive communication is happening from server or client end. Please explain me about this passive FTP communication and how it works.&nbsp;
Thanks in Advance&nbsp;

domai · Answer

For the passive FTP, the ports are actually configured on the server. Lets say you allocate 3001 - 3005 for passive FTP communication then when you create a VIP you need to assign that port range. Make sure your firewall also allows those ports.
Firewall rule would look like&nbsp;
ANY----&gt;(Allow port 3001-3005,21)----&gt;VIP&nbsp;
Passive FTP is where the data channel is opened by the server and communicated to the client asking the client to come and connect to it using the ports that it opened to get the data.&nbsp;

domai · Answer

Ok FTP and FTPS are 2 diff things. Looks like you are trying to set up FTPS. Are you using source address as persistence?&nbsp;

Forum Discussion

FTPS VIP creation

Recent Discussions

Inquiry About the "ast-api-discovery" Repository

SNI Sites not taking correct certificate.

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

Can i apply ddos profile on virtual server using port range

ASM Export JSON - size Limit ?

Related Content

How to run an FTP server on Kubernetes with F5 BIG-IP

Node/Pool/VIP Creation Script (from csv input)

Need help with VIP creation

ha cis multi cluster Openshift route creation

AS3 Json for pool creation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS