You can see enabled / disabled by get alg (suprise huh ) but there's nothing to set for this ALG.

Thanks i tried the get alg under the vsys no output. When i do the get alg on the global it shows the following:-

get alg
MSRPC    ALG : enabled
SUNRPC   ALG : enabled
SQL      ALG : enabled
SIP      ALG : enabled
RTSP     ALG : enabled
H323     ALG : enabled
MGCP     ALG : enabled
SCCP     ALG : enabled

So not sure how the above is used for FTP?
 

what about a set alg ?

my SSG5 (ScreenOS 6.1) shows:

instructor-> set ALG ?
appleichat           Apple iChat ALG
dns                  DNS ALG configuration
ftp                  FTP ALG configuration
h323                 H.323 ALG information
http                 HTTP ALG configuration
mgcp                 MGCP ALG
msrpc                attach ms-rpc alg
pptp                 PPTP ALG configuration
real                 REAL ALG configuration
rsh                  RSH ALG configuration
rtsp                 attach rtsp rpc alg
sccp                 SCCP ALG information
sctp                 SCTP ALG information
sip                  SIP ALG
sql                  SQL ALG information
sunrpc               attach sun-rpc alg
talk                 TALK ALG configuration
tftp                 TFTP ALG configuration
xing                 XING ALG configuration
instructor-> set ALG FTP ?
enable               enable FTP ALG
instructor->

I'm not aware of any hardware restriction for ALG's.

When i do the set command it gives me the same options as the get

set ALG ?
h323                 H.323 ALG information
mgcp                 MGCP ALG
msrpc                attach ms-rpc alg
rtsp                 attach rtsp rpc alg
sccp                 SCCP ALG information
sip                  SIP ALG
sql                  SQL ALG information
sunrpc               attach sun-rpc alg

Hi

We are working on getting a KB out soon. Please ref