HereComesTheMeo
Nov 06, 2014Nimbostratus
Passive FTP
I'm having issues with our current BIG-IP deployment.
In our deployment the BIG-IP is used primarily for ASM functionality and sits in front of our firewalls, no load balancing is done (single member in the pool).
For Active FTP, I'm able to use the FTP Profile and it works just fine. For Passive FTP, as you can imagine, the FTP profile doesn't work.
I've done some research but everything I've found so far shows me that an iRule could be used however it requires the use of health monitors and port translations. This is something that is realistically not possible.
In addition, some of the customers that utilize FTP use AUTH-TLS which could cause a problem.
Does anyone have any suggestions on a solution?