Thread: Port 227/command missing a newline character
View Single Post
  #2 (permalink)  
Old 2008-06-23
rockysam39 rockysam39 is offline
Junior Member
  
Join Date: 2008-05-24
Posts: 6
Rep Power: 0
rockysam39 has an average reputation (10+)
Default Re: Port 227/command missing a newline character
HI

I am having the exact same issue. In my organization people reported that download from HP & DELL websies are ending up in PCBD. I checked in the Firewall Logs where it shows that the Firewall Accepts the FTP Packet but the SmartDefense rejects the packets...

Log details shows

Product: SmartDefense
Attack: FTP Bounce
Attack Information: Port/227 command missing a newline character

I read the following information on another Forum :-

The $FWDIR/lib/ftp.def file contains the following instructions:

// If you do not want the FW-1 module to insist on a newline at the end of the
// PORT command, change the following '1' to '0' and re-install the policy

#define FTPPORT_NL 1

so please do (taken from CP-support web):

* Issue cpstop from the command line, stopping all services on Smart Center. * Edit the $FWDIR/lib/ftp.def file and change FTPPORT_NL 1 to FTPPORT_NL 0
* Issue cpstart from the command line, starting all services.
* Reinstall the Security Policy.



I will try this myself tonight ( non-business hours ) and post the results
Reply With Quote