Outbound FTP firewall stop?
-
Hi all,
I would like to enable outbound ftp. Everytime when i add the rule above and enable it all internet traffic is blocked.
I'm using a multi wan connection.
Someone knows whats wrong?
-
http://forum.pfsense.org/index.php/topic,7001.0.html
-
Solution:
Add this rule
TCP LAN net 21 (FTP) * 20 - 21 * Allow FTP
on the wan interface i enabled the ftp helper and on the lan i disabled it.
So wan ftp helper: unchecked.
Lan ftp helper: checked. ;D -
hmmm…it's multi-wan env so that I wouldn't think ftp helper(ftp-proxy) helps you well...
if the ftp-proxy works correctly, then you don't need any rules for outgoing ftp because the
traffic originated from the LAN, pf would keep its state then return traffic comes thru to the
originator, ftp client(s), on the LAN. That's how nat is done by pf, and how pfSense configured.
Check out your current rules: /tmp/rules.debug and see how ftp-proxy is configured.fyr - http://www.openbsd.org/faq/pf/ftp.html
