Vsftpd firewall problem

[arcull]

Hi guys. I have a strange problem. I installed and configured vsftpd server and it works ok until I switch firewall on. I have suse 10.2. In firewall I added FFTP Service uder Allowed services and also added port 20 and 21 in Advanced tab under tpc and udp option, but still when the firewall is on, I can't get open my fpt, not even from my local network. I get the login window and type the username and password in it, but then it waits a little bit and says it cant get the content of the ftp site. What could be wrong with my firewall. Thanx for any suggestion.

PS: bellow is my vsftpd.conf file:

anonymous_enable=NO
anon_mkdir_write_enable=YES
anon_other_write_enable=YES
anon_umask=022
anon_upload_enable=YES
#anon_world_readable_only=YES
chroot_local_user=YES
dirmessage_enable=YES
download_enable=YES
ftpd_banner=Welcome to S_ FTP server.
guest_enable=YES
guest_username=virtual
listen=YES
local_enable=YES
one_process_model=NO
pam_service_name=vsftpd
xferlog_enable=YES
xferlog_file=/var/log/vsftpd.log
xferlog_std_format=YES
write_enable=YES
#local_umask=022
connect_from_port_20=YES
#listen_port=2121

[kahoona]

Check your /var/log/messages for any errors. Perhaps there is a log file for vsftpd in /var/log as well. I'm not real sure.

If you are trying to secure ftp into your box, you could try and use the sshd that is already running there with the client command "sftp"... that is if you have it installed. All the Linux flavors I can think of have installed by default.

[sharik_pahwa]

chk for /var/log/secure and would reccomend to check for firewalls once again.

#iptables -L -n

[arcull]

Thanx guys, but still does not work. I checked /var/log/messages, but there is no error regarding vsftp, even more, there are some lines saying the access was granted to ftp server but still when the wirewall is on, I can not access my ftp server. Is there any other port that I should open in wirewall besides 20 and 21. Does anyone have any other suggestion? Thanx once again.