Outbound FTP Problems "ACTIVE FTP"


  • we have a software that access a external ftp server using active mode, the program connects but when try the "get or put ftp command" gets error  "425 Can't open data connection" message, having a look in the packages on snort I found that the server  send the data on port 20, but the firewall when redirect the port change it, sending the data to the client in other ports. I have tried almost everything, and in any other ftp access works fine, just for that program I have that issue. If anyone can give me a hand I will be apreciate..

    Kinds regards.

    wvini182



  • I have similar issues running on the 1.2.3-RC1 in Transparent (bridge mode) which I now activate the Static Port, all the ftp outbounds work ok. Clients can ftp in and out my server behind the PFsense.

    But in the PF Dash Board top banner showed the following messages:

    Acknowledge All [filter_load] There were error(s) loading the rules: /tmp/rules.debug:26: the static-port option is only valid with nat rulespfctl: Syntac error in config file: pf rules not loaded The line in question [26]: no nat on $wan from 123.123.123.123/27 to any static-port


  • Static port is only valid when using outbound NAT and with transparent bridge outbound NAT is not used.