[ previous ] [ next ] [ threads ]
 
 From:  "Christopher M. Iarocci" <iarocci at eastendsc dot com>
 To:  Ryan <ryanag at zoominternet dot net>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] m0n0wall blocks packets it should not
 Date:  Wed, 09 Mar 2005 19:45:30 -0500
Ryan wrote:

> Christopher M. Iarocci wrote:
>
>> I've been experiencing for quite some time (I'm currently using the 
>> latest beta, but I've seen this since before version 1), packets that 
>> seem to get blocked that should not.  Mostly I notice them in my VPN 
>> packets, that I thought should not be blocked at all, but the logs 
>> certainly show many of those packets being blocked.  However, 
>> recently I see packets get blocked when trying to FTP to an internal 
>> NATed server that I have port 20-21 forwarded to.  Both active, and 
>> passive mode show packets destined for port 20 and 21 being blocked.  
>> I even put in a generic firewall rule to open everything up, packets 
>> are still blocked, and I can not connect to my FTP server.  Is there 
>> an explanation for this?  I'm more interested in why my VPN packets 
>> are being blocked really, but solving my FTP problem would be a 
>> bonus.  :-)  Thanks for any insite.
>>
>> --Chris
>>
>>
>>
> Are you trying to hit the server from the same subnet?
>
> ie- are you hitting the ftp server from your LAN, on the same subnet, 
> or are you on your LAN trying to FTP to its public address?
>
> If its the latter, it might be a NAT re-direction issue. Try using the 
> NAT address if you are on the same LAN.

No, I am hitting from the outside.  I can supply logs if it will help 
figure out what is wrong.  But even if I were hitting FTP from inside, 
it would not explain the often blocked VPN packets I see.  Anyone??

--Chris


-- 
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.308 / Virus Database: 266.6.2 - Release Date: 3/4/2005