Name

FTPT-689 — Data connection arrived from bad peer

Severity

A (alert)

Message text

Data connection from %s address %s, not %s

Description

A data connection from client/server arrived, but the peer address is not the one of the control connection. Kernun FTP proxy checks these IP addreses and if they are not equal, the connection is rejected. Under normal conditions, IP address is correct. The only "normal" situation when PASV response has different IP address is so called third party transfer - transfer between two remote servers. This kind of transfer is not allowed across Kernun FTP proxy. All other cases should mean an intrusion attempt.

Application exits.

See also

logging(7)

Authors

This man page is a part of Kernun Firewall.
Copyright © 2000–2021 Trusted Network Solutions, a. s.
All rights reserved.