Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Enabling Userland FTP Proxy doesn't make it into rules.debug

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 1.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      smatman
      last edited by

      OK, some background,

      I have a LAN on an OPT interface (bce2) and I have a DMZ on an OPT interface (bce3)
      The DMZ is manually outbound NAT
      When I make sure that the 'Disable the userland FTP-Proxy application' checkbox is unchecked on the LAN port (bce2) the rdr rule does not show up in rules.debug

      Active FTP does not work from LAN to DMZ, however if I add the rdr rule to rules.debug: "rdr on bce2 proto tcp from any to any port 21 -> 127.0.0.1 port 8022" and run "pfctl -f /tmp/rules.debug" then Active FTP works.

      Is there a way I can make this change permanent? Or is there something I am forgetting? Any time I make a change through the webgui that rule is obviously lost.

      Thanks,

      Matt

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        Placing of those rules depends somewhat on the firewall and nat rules involved between segments.

        You might also try killing all processes that match pftpx and ftpsesame and then re-saving any firewall rule to trigger a change. See if it restarts properly after that.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.