[sllug-members]: vsftpd problems - Solved
Rusty Keele
rusty.keele at yahoo.com
Fri Feb 8 09:09:46 MST 2008
Kevin Pendleton <kevin at roundsphere.com> wrote: Lamont Peterson said:
> Option 2 will work very nicely and keeps the firewall and DNAT configurations
> simple, too. However, most FTP server implementations do not support such a
> feature. Last I checked (admitidly, it was more than a year ago), vsftpd
> doesn't
This is actually very easy with vsftpd. Just decide what "random" ports
you want to use and specify it in vsftpd.conf and with your firewall:
vsftpd.conf:
pasv_min_port=36768
pasv_max_port=36800
iptables:
# Allow Passive FTP Ports
iptables -A INPUT -m state --state NEW -m tcp -p tcp --dport 36768:36800
-j ACCEPT
Good luck!
Kevin Pendleton
http://utahsysadmin.com/
All,
Thanks for the help in learning about and solving this problem. I ended up doing what Kevin and Lamont (in option # 2) suggested. I edited vsftpd.conf by adding lines telling it which port numbers to use, then I used Yast to open up those specific port numbers in the firewall. It works beautifully now - and my boss is happy - which is nice too!
-Rusty
---------------------------------
Looking for last minute shopping deals? Find them fast with Yahoo! Search.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://sllug.org/pipermail/sllug-members/attachments/20080208/d74fe21b/attachment.html
More information about the sllug-members
mailing list