Port 23 stays open. I played with the firewall rules (on the LAN and WAN connectors I've blocked port 23, in, out and both) but grc.com keeps telling me port 23 is open.
The default rule on the WAN is 'deny'. Port 23 should not be open if you haven't added a rule to explicitly open it.
I would like to disable the rules only when I need ftp or telnet, so it can be secure for the rest of the time.
I'm not sure what your mean by this. Have you created NAT entries and firewall pass rules to allow external access to your ftp and telnet servers? If so, you can disable those rules while not in use by clicking to edit the rule and then check the "Disable this rule" box.
If you haven't created any rules on your WAN and grc is still showing those ports open, then something else is going on. Perhaps your monowall's WAN lies in a NATed address space and the upstream provider is forwarding those ports to another machine, in which case those ports will report as open, even if not from your network. If you want to test this hypothesis then simply compare mono's WAN address to the address that grc.com is reporting to you during the scan.
db