Recent content by robertkwild

whats wrong with this command as i dont want it to restart after it uninstalls sep but it restarts start /wait MsiExec.exe /X {8097EE64-FDE1-409A-B25D-3DFD862871E1} /passive /norestart

Think i have found the answer I was only allowing one way traffic (from internal computers to ftp server) but this is visa versa (from ftp to internal)

Yeah that is what i thought, nat is only for servers that need to get accessed from the wan ie outside world Ms tmg calls this a publishing rule, ie inbound We have a dmz network for this so the outside world can hit the servers ie email ftp on the dmz but as the dmz is on its own private...

Ok but just so were on the same page when i say nat i mean create a publish rule ie inbound rule so you publish a machine to the public network like a email or ftp server When i say access rule i mean a route rule ie outbound rule so a network can talk to another network ie lan or wan

so are you saying i need to publish/NAT my FTP server on the DMZ lan, to my internal users on the internal LAN ie like when i publish/NAT my email server ports 25/143 on the dmz network to the public external network ie WAN? i didnt think you would need to publish/NAT it as there both in the...

im going to give up lol, this is crazy Link Removed i have allowed a wide range of ports and it still doesnt work (see link) when i hash out all the ftps lines on my ftp server config file i can connect to it via normal ftp so i know it works (on the same lan ie perimiter) theres a rule on...

Ok i think i know what to do now Create two access rules (ie outbound rules) for 21 and the passive ports One rule is from internal to perimiter and the other rule is visa versa so they can both talk to eachother

No i have just created an allow outbound rule from internal network ie ftp client to permiter ie ftp server for port 21 and the passive port range the default rule for tmg is to block all traffic to anywhere

yeah on my vsftpd server i have that passive port range open and aswell as on the tmg firewall but i have checked and the secondary ports are meant for new connections after the initial connection has been established but i have already put port 21 and the passive range down as the primary...

when you say my data channel rule, do you mean this rule? what if i leave the rule like so and add the following secondary connections 52472-52486-TCP-Inbound as maybe the passive ports are getting to the ftp server but i need to allow them back in to get a connection going?

hi all, i have made a vsftpd ftps server and i can access it using my pc, filezilla client no problem if its on the "internal" network but when i make it on the "perimiter" network i cant access it atall the rule is 115 and i have opened up the ports, ie 21 ftp and the passive ports...

hi all, im installing xenapp 6.5 (xenapp servers, web interface/secure gateway server, license/sql server) do i need to also install a remote desktop host server and if i need one does it have to be a microsoft one or citrix one cheers, rob

hi all, just a few questions about upgrading our citrix xenapp servers to 6.5 i need to create a database, can i install the database on one of the xen app farm servers or the secure gateway/web interface server also do all the citrix servers need to be joined to the domain ie xen app farm...