Hi Michel, we had same discussion last month...
open the highports.....for connecting back from the client to the ftp-server. for more informations look at the mailing-list last month..... read the manpages from ftp-server for the reqired ports... greetings michael 2009/2/2 Michel Servaes <[email protected]> > Hi, > > I'm having some troubles with our default ftp-server behind pfsense. > It is capable of doing passive ftp, and I gave it the WAN ip address to be > connected, but I cannot connect to it with every site I go to... most of the > time, I'm have "ls" problems, dataconnected, and then it sits there waiting. > I've played a bit with the ftp helper at both sides (WAN and LAN), but > still no solid ftp connection at every site... > > The sites I visited are using different brands of firewalls/routers, and > when opening the ports at their side, it goes right through (which makes me > suspect the client side is trying to run in active mode only, however I am a > bit puzzled, since all sites are behind a NAT router, and some of them just > work fine). > > Can it be, that some firewall's and/or routers are smart enough, to make > Active FTP work, hence they are behind this router ? > > > > I also tried to add FreeNAS as an FTP server, but I am experiencing the > same problem. > > > Mind you, that I have setup our ftp-servers in my NAT as well, behind the > pfsense box... which brings me to my next questions : > > > - Can I have 2 ftp servers, assuming that I have a range of WAN-IP's (not > suffisiant to give every workstation a 1:1 relation !!) > - Should I put my ftp servers in a DMZ zone, and if so, should I add > another firewall to my FreeNAS (or use the firewall solution FreeNAS is > offering these days ?) > - If our application is truely expecting an Active FTP (instead of passive) > can I prove this using the state-table of pfsense ? > > > Kind regards, > Michel Servaes > > > --------------------------------------------------------------------- To > unsubscribe, e-mail: [email protected] For additional > commands, e-mail: [email protected] Commercial support available - > https://portal.pfsense.org -- === m i c h a e l - s c h u h . n e t === Michael Schuh Postfach 10 21 52 66021 Saarbrücken phone: 0681/8319664 mobil: 0177/9738644 @: m i c h a e l . s c h u h @ g m a i l . c o m === Ust-ID: DE251072318 ===
