Hello TAC, TF> We have a FTP server, (Red Hat Linux 7) behind a firewall, the TF> firewall allows only incomming and established connections on ports TF> 20,21 from any where and evry where. TF> The Problem is, when the customers use FTP clients, the manage to TF> login , but cannot upload/download files if they use PASSIVE FTP TF> connections. TF> Can smeone suggest, how the best way to get out of this situation, TF> should we enable all ports above 1023? If you use VSFTPD (recommended), there's a directive there that tells the daemon to open a port from a selected range of ports - that should be more secure. -- Best regards, Marcin mailto:mark@xxxxxxxxxxxxx
