I have just changed my ADSL router from the Speedtouch 716WL that I have been using for a year or two back to a Zyxel 660H that I had used for a while. The reason is that I no longer need the VOIP ports on the Speedtouch and its firewall is difficult to configure, Web configuration is limited and CLI configuration is arcane!
The Zyxel 660H has all the facilities I need now and the Web configuration of the firewall is comprehensive enough for my needs.
After a bit of head scratching I have got just about everything working as I want, all the machines on the LAN can see the outside world 'transparently' and some bits of the outside world can see into the LAN as follows:-
Any IP address can get to my apache server on port 80 A (very) limited number of IP addresses can connect to my ssh server on port 22 One outside address can get to the router's web configuration which I have moved from the default port 80 to 50080. Very useful for fixing things from work!
However I can't get FTP into my NAS to work at all, all I get is a stony silence. I appreciate that there are several oddities about getting FTP to work and it *may* be that it just isn't possible with this router but it would be nice if I could get it to work.
What I have done so far is:-
Ports 20 and 21 are forwarded from "any outside IP" to the NAS which has the FTP server on it.
The firewall allows ports 20 and 21 through.
I have disabled the FTP access to the router completely (i.e. as I understand it I have turned the router's FTP server off, it's for Firmware updates etc.)
No joy at all. Looking at the router's logs all I see when I try and connect is an incoming packet from the outside system which gets to the NAS and that's it. However I'm not really sure that the logging is showing me everything. By default the FTP clients are using passive mode so, as I see it, everything should be started from the client end.
Any ideas anyone as to what I might try next? Even someone saying "it isn't possible" would save me some time!