I have port forwarding working well with a a variety of ports but two seem to be causing a problem.
Ports 20 and 21 are being forwarded from the outside to an internal FTP server but they are getting blocked by the firewall.
On the port forward setup screen I have it like this:
Origin port: 20:21
Destination port: (blank)
Destination host: (internal server)
Allow only from: (blank)
This is a typical error in the firewall log:
pr 27 10:57:15 firewall kernel: Shorewall:net2ovpn:DROP:IN=eth1 OUT=tun0 SRC=18.104.22.168 DST=192.168.1.99 LEN=48 TOS=0x00 PREC=0x00 TTL=50 ID=43850 DF PROTO=TCP SPT=9994 DPT=21 WINDOW=65535 RES=0x00 SYN URGP=0
Any ideas why?