*	FTP doesn't work from behind the firewall! I get "illegal port" errors and
	whatnot.

You do not have FTP nat support compiled into the kernel:

Networking Options --> Netfilter configuration:

<*> Connection tracking (required for masq/NAT)
<*>   FTP protocol support
	
You may have these as modules if you wish. 

