APF seems to stop all ftp - incoming OR outgoing.

Some of the drops are listed in /var/log/messages, but I don't get anything like this when ftping to another server.

Jan 11 08:02:33 server kernel: ** IN_TCP DROP ** IN=eth0 OUT= MAC=00:0c:76:61:c1:10:00:e0:**:**:**:**:**:** SRC=216.40.**.** DST=66.98.228.** LEN=60 TOS=0x08 PREC=0x00 TTL=62 ID=27311 DF PROTO=TCP SPT=20 DPT=37997 WINDOW=5840 RES=0x00 SYN URGP=0 OPT (020405B40402080A2D99A9A60000000001030300)

Here's the important part (I think) of my conf.apf:
[php]
IG_TCP_CPORTS="22,21,22,23,25,53,80,110,143,443,993,995,1040,2082,2083,2084,2086,2087,2095,2096
,2525,3000_3500"
IG_UDP_CPORTS="20,53,873"
IG_ICMP_TYPES="3,5,11,0,30,8"
EGF="1"
EG_TCP_CPORTS="20,21,22,25,37,53,43,80,113,443,465,873,2087,2089"
EG_UDP_CPORTS="20,21,53,873"
EG_ICMP_TYPES="all"
[/php]
Incoming and outgoing FTP both work normally when apf is stopped.


Thanks for your help.

IG_TCP_CPORTS=" 22,21,22,23,25,53,80,110,143,443,993,995,1040,2082
,2083,2084,2086,2087,2095,2096,2525,3000_3500"


There seems to be a space between =" and 22 like =" 22

Might not be directly related to the problem, but that space shouldn't be there.

Thanks, but that's not the problem. The space isn't in the conf file, so it must've been added in copy+paste.

Edit: Actually it's not even there when I edit the post. Looks like vBulletin does some funky things with long lines.

The first of the IG TCP is 22, and should be 20. I changed it, and it appears to work now -- sort of. It's much slower than it should be and disconnects frequently.