The installation and configuration of vsftpd FTP Server under RedHat Linux
The vsftpd server verification
The vsftpd server installation
The vsftpd server configuration
The vsftpd server verification
First of all it is necessary to check if proftpd server is installed and if has IPv6 support.. The best way is to use a specific command from the super user mode:
vsftpd -v
As a resault there should be an application version. If version is above 1.1.3, it means that installed vsftpd has the IPv6 support. If this command returns an answer about not finding such command, install the proftpd server.
The vsftpd server installation
Enter from command line of the super user:
yum install vsftpd
The vsftpd server configuration
The main configuration is located in /etc/vsftpd/vsftpd.conf by default.
<here should be screenshots from the knowledge contained in "In migration to IPv6 context it is necessary to remember">
Vsftpd (Very Secure FTP Daemon) is another of the most popular implementation of FTP (File Transfer Protocol) server for many unix platforms such as: Linux, Solaris and FreeBSD. It is used by FTP servers of many services such as redhat.com, suse.co, debian.com, freebsd.org, gnu.org. As the name suggests, the great pressure developers put on security, nevertheless vsftpd is known as a stable and efficient server also. The source code of the vsftpd is open.
The principle of how does FTP protocol work is simple. First a user is connecting with the server application through the client application (Web browser e.g. FireFox or dedicated client application e.g. LFTP). This means establishing two connections through TCP/IP - one for controlling (exchanging of requests and anwsers by exchanging of commands), one for data transfers.
There are two connection modes through the FTP protocol:
- active mode: for exchanging commands there is used port 21 (a connection established by the client) and for data transmission there is used port 20 (a connection established by the server),
- passive mode: for exchanging commands there is used port 21 and for data transmission there is used port above 1024 (both connections are established by the client).
In migration to IPv6 context it is necessary to remember:
-
In case of by hand compilation from sources, there is a need of giving an "--enable-ipv6" parameter (the installation with a packet manager system includes this parameter by default). For checking if this parameter is already included in present installation of proftpd server, type: "proftpd -V" from the command line. Then find in the "configure" section the "--enable-ipv6" parameter. In the "Features" section should be "+ IPv6 support".
-
By default there is an "UseIPv6 on" definition in proftpd.conf. The "UseIPv6 off" deffinition must be changed. In case of no "UseIPv6" definition, application assumes value "on" by default.
-
By default proftpd listens on every single IP address it finds on the operation system. In this case migration is simplified. However in case of "listen_address" deffinition is found and there is a specific IPv4 address declared, it means, that server listens on that IP address. During the migration from IPv4 to IPv6, there is a need of changing this deffinition to "listen_address6" with a value as IPv6 address.
©2012 IIP