|
| |||||||||
| Tags: firewall, incoming, linux, mode, passive, port, server, web |
Sponsored Links
How to open ports in vsftp passive mode
Networking & Security
 |
| | Thread Tools | Search this Thread |
|
| |||||||||
| Tags: firewall, incoming, linux, mode, passive, port, server, web |
|
| | Thread Tools | Search this Thread |
|
#1
19-05-2009
| |||
| |||
| How to open ports in vsftp passive mode
I am running vsftpd running on my Linux server. My vsftpd is configure under active mode to receive incoming connection. As a security issue it better to configure vsftpd server in passive mode. Now in passive mode firewall is also an issue. How can i configure my server under passive mode and open more number of ports on the firewall. I only want to configure some particular ports to the user to get access. Any used port can cause a security breach. Provide suggestions.  |
|
#2
19-05-2009
| ||||
| ||||
| Re: How to open ports in vsftp passive mode
It is a good decision to switch to passive mode from active mode. But firewall will block your incoming connections, so that your genuine users will also affected. Also under active mode of your server security risk inherit in an unsecure protocol like FTP. Eg. usernames and passwords are sent in plain text which can be capture by sniffer. You can use more secure file transfer method like scp or sftp. I am running Proftp, and shore firewall with the help of webmin. I can setup a range of ports on the server like for passive ports 60000 62000 which include a range in firewall rules | 60000:62000. You will also need a FTP client which can target those ports. |
|
#3
19-05-2009
| ||||
| ||||
| Re: How to open ports in vsftp passive mode
Under passive mode your server is more secure as compare to active mode. The common issue will running a server in passive mode is firewall. You can specify the Passive Port Range in your server. On the other hand if Passive Port Range is not specified the server used the available ports.The Passive Port Range are specified in - /proc/sys/net/ipv4/ip_local_port_range file Configuration settings :
|
|
#4
19-05-2009
| ||||
| ||||
| Re: How to open ports in vsftp passive mode
To open more ports in you vsftp server under passive mode do the following : 1). The below function enable local user. So that your local can use vsftp server. local_enable=YES write_enable=YES 2). The below function enable passive mode pasv_enable=YES 3). The below function enable the number of ports. pasv_max_port=51000 pasv_min_port=50000 port_enable=YES Don't forget to save the file. Restart your vsftpd server. |
|
|
| Thread Tools | Search this Thread |
| |
Similar Threads for: "How to open ports in vsftp passive mode" | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| FTP passive mode in Windows Explorer | DaaruWala | Windows Software | 4 | 23-12-2010 07:23 PM |
| What ports do i open for vpn | M. Rafi | Networking & Security | 3 | 11-08-2009 08:13 PM |
| Passive mode of FTP Server not working under IPTAbles | Oren10 | Networking & Security | 3 | 18-05-2009 09:27 AM |
| DNS Ports open | Mike | Windows Server Help | 4 | 03-04-2009 03:33 AM |
| What ports should I open and how | cobrakaun | Networking & Security | 5 | 03-02-2009 11:26 PM |
