[dantro]

From what I can see there is somekind of misconfiguration.

fw monitor agenda:
i.. incoming connection pre network kernel
I.. incoming connection after passing network kernel
o.. outgoing connection pre network kernel
O.. outgoing connection after network kernel

Now look what you got:
eth0:i[60]: 172.17.143.12 -> 63.245.208.138 (TCP)
eth0:O[52]: 63.245.208.138 -> 172.17.143.12 (TCP)

That's all.

You internal linux host opens an ftp connection and the firewall receives this packet on its external interface eth0. ? Then the following traffic is not getting logged: IoO -> iIo
But the last upper O is getting logged again. Since I don't know better I'd say you have a strange NAT configuration or there something wrong with your network cables.

However, since manna.mozilla.org answers the general connectivity seems to work. But then you are going to AUTH with Kerberos_v4 which is not supported by the mozilla server.
> No control connection for command: Illegal seek
> KERBEROS_V4 rejected as an authentication type

Without a proper control connection all further steps won't work. I've tested it under linux and it works fine. Please check that your linux config is working properly. Use a Knoppix CD to make a simple ftp test from a Live Linux CD.

Your Windows ftp client is not trying to come up with Kerberos. That is why it works.

Best regards,
Danny Trommer
CCSA/CCSE/CCSE+