By default, all applications' traffic are allowed. For security reason, I do not use the default firewall policy of SEP12.1.
I create some rules to allow traffic pass through specific ports.
Everything seems OK. But FTP is an exception.
FTP has two modes to transfer data.
One is active mode, and for this mode, it is easy to create the rule.
The other is passive mode, it use a dynamic port to transfer data, so I can not specify a fixed port to allow traffic.
So, my question is:
How to allow FTP Passive Mode traffic on clients when disable the rule "allow all applications"?
can someone help me?
Thanks in advanced.