i use ports 60000 to 60005 as my ftp passive ports.
my vsftpd.conf file contents:
# vsftpd.conf
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
dirmessage_enable=YES
xferlog_enable=YES
connect_from_port_20=YES
xferlog_file=/var/log/vsftpd.log
xferlog_std_format=YES
ascii_upload_enable=YES
ascii_download_enable=YES
ls_recurse_enable=NO
listen=YES
pam_service_name=vsftpd
userlist_enable=YES
tcp_wrappers=YES
pasv_enable=YES
pasv_min_port=60000
pasv_max_port=60005
my entries in iptables for my ftp:
-A INPUT -m state --state NEW -m tcp -p tcp --dport 21 -j ACCEPT-A INPUT -m state --state NEW -m tcp -p tcp --dport 60000:60005 -j ACCEPTissues experienced:
i got a "500 OOPS: cannot change directory:" error; disabled selinux to address
i got an "ftp: connect: No route to host" whenever i issued an ls command; rechecked my pasv options in my vsftpd.conf file and iptables entries to address
No comments:
Post a Comment