apf blocking ftp port 20
 

when i run pure-ftpd at port 21: apf dont drop connections from port 20 -.> going to client high port (ftp data connection)

but when i bind ftp to other port, like 8321, then apf drop this packets.

apf.tcp.outbound there arent those user high ports defined (i dont want to allow connections from system to all ports-if i allow all outbound connections it works ofcourse)... so it make sense it dont work |BUT| IT ACTUALLY DOES WHEN FTP IS AT PORT 21.

strange, any idea why this can be ? probably some hidden apf config ?

(ofcourse it works fine for passive, cos i can define which ports will be used in both ftp & apf, but i need active connection)

thank you

-dex

apf probably made you a firewall script that allow port 21 but block port 8321... you better take a look at the script it created.

Btw, using an "easy firewall tool" is a good way to get unknow problem like that at my opinion. If you want a firewalling script, the best way is to make your own yourself at my opinion. It's not very hard and it will work waaaay better.