next »

[purdue512]

Is is possible that doing an upgrade from 1.0.1 rather than a clean install of 1.2 RC3 is causing my FTP hell?

[purdue512]

That's why I asked about the pftpx process in ps.

I followed that pointer, thanks. I ran the command in the shell and got some feedback that I couldn't interpret. But there was one line and you said to expect one per Helper-Enabled Interface, so that seemed right to me.

[purdue512]

See also:

http://forum.pfsense.org/index.php/topic,6107.0.html

Which I'm having a hard time understanding...

[purdue512]

This issue  seems to go WAY back:

http://www.mail-archive.com/discussion@pfsense.com/msg01852.html

[mhab12]

FTP (outbound) works fine here.  Granted we only have one WAN, one LAN(vlan), and one OPT(vlan).  The FTP helper etc. is DISBALED on all interfaces.  No special port forwards/firewall rules on 21 or anything like that.  We just had to tinker with the ftp proxy option on different interfaces but we got there.  Lucky for us we were one of the 99% user error category.

[purdue512]

Thanks mhab12.

Could you provide some detail on the "tinker with the FTP proxy options" for me?

[mhab12]

Tinker with the FTP proxy options  = Toggle the FTP proxy option on and off in various combinations across all your interfaces.

[purdue512]

Okay... In the newest version I think it's called "FTP Helper", so I'm assuming we're talking about the same thing.

Thanks for your help.

[sullrich]

FTP Helper is a FTP Proxy.   It is called "FTP Helper" in the GUI but it's basically a proxy.

[purdue512]

Thanks. At this point, I've come to the conclusion there are some very serious bugs in the FTP HELPER (proxy) in PFSense 1.2 RC3. I know many people have posted that they have it working, but I've now put over 40 hours into this single issue (yes, it's crazy) and I simply can't get it to work with my config. I'm thinking it has to do with being Multi-WAN and CARP... 

I am, sadly, going to back-out my PFSense HA implementation and go back to SmoothWall until I can get FTP working on the bench. I had neglected to test FTP before putting this into production (my bad), and had also assumed this would not be a big deal. From the volume of posts around, it certainly IS a big deal. My personal belief is that it will hold this software back until addressed. I know what the sentiment is for FTP, and I don't disagree on technical grounds, but it's simply used too much by big corporate players today to be overlooked...

When I get back on SmoothWall, I will start removing pieces of my PFSense config to see if I can isolate exactly where FTP dies on the bench. I'm going to try a single-WAN / CARP config next... See if that works. If it doesn't I will try single-WAN single PFSense, see if that works.  Sure hope the larger community decides FTP needs attention before RC3 becomes a real release....

All the input and time responding to my questions is deeply appreciated.

[sullrich]

Thats strange as I know of NO FTP bugs....   Maybe you should walk through http://devwiki.pfsense.org/FTPTroubleShooting first.

[Perry]

When I get back on SmoothWall, I will start removing pieces of my PFSense config to see if I can isolate exactly where FTP dies on the bench. I'm going to try a single-WAN / CARP config next... See if that works. If it doesn't I will try single-WAN single PFSense, see if that works.  Sure hope the larger community decides FTP needs attention before RC3 becomes a real release....

IMO It's always a good practice to do a test with as default install as possible first. If that works one can move closer to one's intended install until it breaks. Then report what has been done so it is possible to duplicate.

I do also appreciate when software is released, that known limits is shown beside features.

just my 2 cent.....         

[purdue512]

Thats strange as I know of NO FTP bugs....   Maybe you should walk through http://devwiki.pfsense.org/FTPTroubleShooting first.

Thanks... But I've been through that like 6 times.

[sullrich]

Thats strange as I know of NO FTP bugs....   Maybe you should walk through http://devwiki.pfsense.org/FTPTroubleShooting first.

Thanks... But I've been through that like 6 times.

Well thats fine but it really does fix 99% of the edge cases.   I Honestly see nothing strange with your configuration.  So suit yourself.

[purdue512]

Thats strange as I know of NO FTP bugs....   Maybe you should walk through http://devwiki.pfsense.org/FTPTroubleShooting first.

Thanks... But I've been through that like 6 times.

Well thats fine but it really does fix 99% of the edge cases.   I Honestly see nothing strange with your configuration.  So suit yourself.

Gotta love being the 1 exception in 100!!     Believe me when I tell you that I would LOVE to have done something to mess this up because that would mean that I could fix it.  I will take all of the above suggestions about starting from factory install (again) and building up with FTP tests at every change..  I will report that data back as I would hope it could help the community or someone else hitting this same wall.