Hey Happy New Year to all :)

I'm not sure if there is a better way to do this.

what I want to do is seperate my FTP server from the rest of my network with a firewall like smoothwall or someother "easy to use" software (im not afreaid of the CLI), and have an IDS like snort and block all other ports on the FTP so only FTP traffic an pass through.

im not sure if I explained my self right but I hope you kind of understand what I want to do.

You'd put your ftp server into the DMZ and then alter your rules to that machine from there.

Smoothwall is a good choice to do something like that with.

Actually, I think that the smoothwall website has an example sorta like what you describe.

HTH

well I installed smoothwall and I can ping everything inside the network but I cant ping an outside source like google.

Doh! I have no clue about smoothwall, shorewall is what I've used before.
It has sample configs and such.

http://www.shorewall.net/

To do a DMZ setup, you would need a third NIC on the Shorewall box.

LOL True. I had forgotten that I had 3 nics in the box that I was using when I set it up.

Another way, would be to set up the firewall on the fileserver to allow only ftp.