FTP traffic goes out WAN instead of WAN2, ignoring firewall rules
-
We have "Disable the userland FTP-Proxy application" unchecked on the LAN, and the "TCP|LAN net||127.0.0.1|8000 - 8030||FTP Helper" rule at the top of the LAN interface then further down we have a send all IPs part of AliasX to go out WAN2 for port 21…. But all the FTP traffic goes out WAN1 instead.... What are we doing wrong?
-
This means that the connections is handled by the FTP-proxy (which can only make use of the primary WAN).
Disable the FTP helper and it should work. -
Disabling the FTP-proxy breaks active FTP and some of the servers we connect to are active-only…..
-
In this case you cannot use policy routing and you will have to create static routes for all these servers pointing to the gateway of WAN2.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.