General Questions

I'm trying to replace my Linux/Shorewall firewall system with m0n0wall (1.2.3.1), but I'm running into a couple of problems.  One of them is that putting files to FTP servers does not work.  I see the return packets from the server (source port 21/tcp) to the client (random high destination port) being blocked by m0n0wall.

I did a search of the forums, and the one that seemed closest to mine was the case of the DSL modem needing to be set to bridge.  The problem with that is that my DSL modem already is set to bridge for my m0n0wall firewall.  I'm stumped.  I'd really like to switch to m0n0wall, but this is a show stopper.  If it matters, the DSL modem I'm using is an SBC (now AT&T) provided 2Wire 2700HG-B.

I saw the post on these forums about pfSense, which I didn't know existed.  I saw that it uses pf filters instead of ipfilters, so I thought it was worth a try to see if FTP uploads work.  I downloaded the pfSense CD image, and fired it up.  Sure enough, FTP uploads work fine in pfSense.  I just wanted to update this post in case anyone else tries m0n0wall and has problems with FTP uploads like I did.

I'm assuming this has something to do with the need for passive mode support in your FTP client when behind m0n0wall.

Anyone: Does pfSense do something similar to a Cisco PIX's "fixup ftp" and dynamically allow incoming connections from an FTP server depending upon FTP clients' requests?