Cisco ASA Let passive FTP Through – Terminated by inspection engine

cisco-asa-5520-and-55501The inspection engine is looking at the ftp protocol and finding something objectionable in that user’s sessions. Exactly what is hard to say without debugging or capturing a live failing session.

You can disable ftp inspection as follows (in global configuration mode of course):

policy-map global_policy

class inspection_default

no inspect ftp

1 Star2 Stars3 Stars4 Stars5 Stars (No Ratings Yet)