[JohnnyUtah]

Hi, my firewall is set to "block all". Since we run windoze servers... we run a pretty tight firewall. We dont let anything reach the outside or inside if its not needed.

I just open the ports I need opened.

But im having a hard time understanding how the order of the rules (open ports) plays a role in the firewall.

ie: I need to have port 20-21 open for a server in my network to place orders outside our network.

Here was my setup:
I had opened ports, 80, 53, 443, 8080...(the usual).
I put the ports 20-21 in rule #1. That didnt work. My main server couldnt reach out. These ports were still blocked by the untangle server. After hours of messing around, I found that If I moved that rule in the rule #5 spot, it worked!! My server could reach outside the network via port 20-21.

My question is why? how come? Do I need common ports opened up before the ftp ports?

Thanks for your input... im just trying to figure out how the untangle firewall works.