[ previous ] [ next ] [ threads ]
 From:  Ryan <ryanag at zoominternet dot net>
 To:  "Christopher M. Iarocci" <iarocci at eastendsc dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] m0n0wall blocks packets it should not
 Date:  Mon, 07 Mar 2005 09:40:37 -0500
Christopher M. Iarocci wrote:

> I've been experiencing for quite some time (I'm currently using the 
> latest beta, but I've seen this since before version 1), packets that 
> seem to get blocked that should not.  Mostly I notice them in my VPN 
> packets, that I thought should not be blocked at all, but the logs 
> certainly show many of those packets being blocked.  However, recently 
> I see packets get blocked when trying to FTP to an internal NATed 
> server that I have port 20-21 forwarded to.  Both active, and passive 
> mode show packets destined for port 20 and 21 being blocked.  I even 
> put in a generic firewall rule to open everything up, packets are 
> still blocked, and I can not connect to my FTP server.  Is there an 
> explanation for this?  I'm more interested in why my VPN packets are 
> being blocked really, but solving my FTP problem would be a bonus.  
> :-)  Thanks for any insite.
> --Chris
Are you trying to hit the server from the same subnet?

ie- are you hitting the ftp server from your LAN, on the same subnet, or 
are you on your LAN trying to FTP to its public address?

If its the latter, it might be a NAT re-direction issue. Try using the 
NAT address if you are on the same LAN.