Hi,
My installed a new link recently. However, when workstation connects to any passive FTP server. after entered username and password, it won't able to get directory listing. When I checked the NAT translation table, I saw some other NAT entries established with same port and same outside IP, but the inside source IP display the router NAT ip.
The INSPECT has been applied to both inside and outside interface, any idea what went wrong ? Is it related to the new link ? Here's sample result
tcp 139.131.62.222:1048 139.131.62.222:64177 64.13.142.66:80
64.13.142.66:80 tcp 139.131.62.222:1049 139.131.62.222:65395 64.13.142.66:80 64.13.142.66:80 tcp 139.131.62.222:50478 10.10.143.238:50478 64.13.142.66:80 64.13.142.66:80Here's server PAT setting
ip nat inside source list IOS-NAT-OUT interface Vlan10 overload
interface G0/1 ip address 10.10.143.1 255.255.255.0 ip nat inside
interface Vlan10 ip address 139.131.62.222 255.255.255.252 ip nat outside
ip access-list extended IOS-NAT-OUT-YNR permit ip 10.10.143.0 0.0.0.255 any