[Solved] vsftpd setup for outside access

Build it and learn to secure your system/server.


[Solved] vsftpd setup for outside access

Postby jslick1jim » Sun Jun 30, 2013 8:45 pm

Hello

I would like too set it up too have 2 users. I have ubuntu lamp server and webmin up and running, with outside access with no ip. works good but i would to be able to get access to privte stuff while on road working or vacation. i have found many how too's they just fall short of working to get outside access.
i had proftp working but not secure. I just did a fresh install of it all. had to i messed it up trying :? one of many. :D From my homework vsftpd is sercure, i hope.
Last edited by tanmay.01 on Wed Jul 03, 2013 10:10 am, edited 1 time in total.
Reason: Marked [Solved]
ImageMotherboard Msi Eclipse Sli
Cpu intel i7 920
Mem 6gig ddr3
x-fi extreme audio
ps2 keyboard
usb razer mouse
2 sata2 320 wd hd
2 ide 320 wd hd
2 segate 1tb hd
4 wd black 1tb hd
Visontek 5870
Hp Officejet Pro 8500 wireless
Lian Li PC-343B Modular Black Aluminum Cube Case
32in Olevia LCD HD TV
Ultimate Edition 3.4 64 bit
jslick1jim
U.E. Graduate
U.E. Graduate
 
Posts: 89
Joined: Fri Nov 21, 2008 1:00 pm
Age: 61
Operating System: Ultimate Edition 3.4 64 BIT



Re: vsftpd setup for outside access

Postby ryanvade » Sun Jun 30, 2013 11:46 pm

"Very Secure FTP Daemon". If setup correctly you should be fine. The biggest issue is having a Static IP. Or a way to find out the IP when you are out. Because most users have dynamic IPs it is impossible to know what the IP is, which makes it VERY difficult to connect from outside your network. There are services that will redirect your connection to the correct IP, I personally don't trust or know of any specifically. You will also want to enable port forwarding on your router.

Assuming that your home internet connection is ADSL/Cable where your IP address may change, you'll also need to setup some sort of DynamicDNS solution. (no-ip, dyndyn, etc) Some routers have the functionality to handle updates built-in, if yours doesnt there are linux clients which can do it as well.
Image

Laptop: HP dv6t-7000 CTO Desktop: Compaq Presario SR21632wm
i5 2450m Pentium D 960 @ 4 GHz
6 GB ram 2 GB ram
Intel HD 3000 Graphics / Nvidia GT 630M Nvidia GT 520 @ 820 MHz
Diamond II-B 3.10-rc4/Windows 7 Home Premium KDE | Windows 7 Starter/Arch Linux

Paid supporter of the Linux Foundation
User avatar
ryanvade
Moderator
 
Posts: 499
Joined: Sat Apr 28, 2012 10:54 am
Operating System: Other Linux



Re: vsftpd setup for outside access

Postby pam » Mon Jul 01, 2013 12:34 am

Most ISP's will block http ports. Ftp ports are open.
Like ryanvade said its next to impossible to get a web server up and that too on dynamic ip. A simple solution would be to purchase a domain name and set up your dns server(+LAMP) with it. A unique domain name gets cached on most servers across the globe. As for broadband wireless, i have no clue whether they allow http services(the one connected to your home computer will be dedicated for server and the one you use on the move gives you internet access). The upload speeds of wireless mobile broadband are crap. If you use cable(any wireline) you are pretty much in good hands...

If you somehow do get it all working, without a domain name, you can be Sure its an open 'naked' network, meaning everyone can access the data on your disks.

Id recommend a freeBSD server against everything linux. Dont get me wrong, Linux is excellent but BSD is secure(enough) and is better committed to hardware with almost zero downtime.
DONOTSPAMORTROLL:
http://forumubuntusoftware.info/viewtopic.php?f=9&t=11
Download Ultimate Edition and Oz Unity 3.0 from copy:-
https://www.copy.com/s/oBnDBsDOvxF8jW1EuLKM/Public
Download Ultimate Edition from sourceforge:-
http://sourceforge.net/projects/ultimat ... rce=navbar
Download Oz Unity 3.0 from sourceforge:-
http://sourceforge.net/projects/ueoz/files/UEOz/
Download Ultimate Edition torrents from linuxtracker:-
http://linuxtracker.org/index.php?page= ... 0&active=1
Download Oz Unity 3.0 torrents from linuxtracker:-
http://linuxtracker.org/index.php?page= ... 0&active=1
Image Image
Visit:http://www.ultimateeditionoz.com
User avatar
pam
Site Admin
 
Posts: 1087
Joined: Wed May 25, 2011 5:56 am
Location: India
Age: 32
Operating System: Ultimate Edition 3.5 64 BIT



Re: vsftpd setup for outside access

Postby ryanvade » Mon Jul 01, 2013 12:40 am

Id recommend a freeBSD server against everything linux. Dont get me wrong, Linux is excellent but BSD is secure(enough) and is better committed to hardware with almost zero downtime.


FreeBSD or Linux with Grsecurity patches. (IE PAX). You can try something like this:
http://www.noip.com/ but it is risky.
Image

Laptop: HP dv6t-7000 CTO Desktop: Compaq Presario SR21632wm
i5 2450m Pentium D 960 @ 4 GHz
6 GB ram 2 GB ram
Intel HD 3000 Graphics / Nvidia GT 630M Nvidia GT 520 @ 820 MHz
Diamond II-B 3.10-rc4/Windows 7 Home Premium KDE | Windows 7 Starter/Arch Linux

Paid supporter of the Linux Foundation
User avatar
ryanvade
Moderator
 
Posts: 499
Joined: Sat Apr 28, 2012 10:54 am
Operating System: Other Linux



Re: vsftpd setup for outside access

Postby jslick1jim » Mon Jul 01, 2013 12:59 am

But i have noip.com and thru them i have access to my internal network or should i say server. it works real sweet. :D
I have had this online for last year or so using a noip sub domain. havn't had no troubles than again only handful people have address.
ImageMotherboard Msi Eclipse Sli
Cpu intel i7 920
Mem 6gig ddr3
x-fi extreme audio
ps2 keyboard
usb razer mouse
2 sata2 320 wd hd
2 ide 320 wd hd
2 segate 1tb hd
4 wd black 1tb hd
Visontek 5870
Hp Officejet Pro 8500 wireless
Lian Li PC-343B Modular Black Aluminum Cube Case
32in Olevia LCD HD TV
Ultimate Edition 3.4 64 bit
jslick1jim
U.E. Graduate
U.E. Graduate
 
Posts: 89
Joined: Fri Nov 21, 2008 1:00 pm
Age: 61
Operating System: Ultimate Edition 3.4 64 BIT



Re: vsftpd setup for outside access

Postby ryanvade » Mon Jul 01, 2013 2:06 am

ohhh.
Image

Laptop: HP dv6t-7000 CTO Desktop: Compaq Presario SR21632wm
i5 2450m Pentium D 960 @ 4 GHz
6 GB ram 2 GB ram
Intel HD 3000 Graphics / Nvidia GT 630M Nvidia GT 520 @ 820 MHz
Diamond II-B 3.10-rc4/Windows 7 Home Premium KDE | Windows 7 Starter/Arch Linux

Paid supporter of the Linux Foundation
User avatar
ryanvade
Moderator
 
Posts: 499
Joined: Sat Apr 28, 2012 10:54 am
Operating System: Other Linux



Re: vsftpd setup for outside access

Postby ryanvade » Mon Jul 01, 2013 2:10 am

Have you tried just adding new users to your server? How far have you gotten with vsftpd?
Image

Laptop: HP dv6t-7000 CTO Desktop: Compaq Presario SR21632wm
i5 2450m Pentium D 960 @ 4 GHz
6 GB ram 2 GB ram
Intel HD 3000 Graphics / Nvidia GT 630M Nvidia GT 520 @ 820 MHz
Diamond II-B 3.10-rc4/Windows 7 Home Premium KDE | Windows 7 Starter/Arch Linux

Paid supporter of the Linux Foundation
User avatar
ryanvade
Moderator
 
Posts: 499
Joined: Sat Apr 28, 2012 10:54 am
Operating System: Other Linux



Re: vsftpd setup for outside access

Postby tanmay.01 » Mon Jul 01, 2013 2:51 am

How is your NAT configured or your firewall configured..?
FTP's on linux use passive ftp connection.
ANd are you using ssh..?

Add following to /etc/vsftpd.conf
Code: Select all
connect_from_port_20=YES
pasv_enable=YES
pasv_addr_resolve=YES
pasv_address=myaddress.no-ip.org
pasv_min_port=4242
pasv_max_port=4252
HP ENVY 15
•3rd generation Intel(R) Core(TheeMahn) i5-3210M Processor (2.5 GHz with Turbo Boost up to 3.1 GHz)
• 1GB Radeon(TheeMahn) HD 7750M GDDR5 Graphics [HDMI]
• 6GB 1600DDR3 System Memory (2 Dimm)
• 750GB 7200 rpm Hard Drive
• Intel 2x2 802.11a/b/g/n WLAN + Bluetooth(R)
• Full-size Radiance backlit keyboard.

Image
User avatar
tanmay.01
Moderator
 
Posts: 253
Joined: Wed Dec 07, 2011 1:03 pm
Location: India
Age: 27
Operating System: Other Linux



Re: vsftpd setup for outside access

Postby jslick1jim » Mon Jul 01, 2013 11:24 am

ryanvade wrote:Have you tried just adding new users to your server? How far have you gotten with vsftpd?



I've had it up and able too connect locally but not outside of my network. i even turned off firewall off well trying.
ImageMotherboard Msi Eclipse Sli
Cpu intel i7 920
Mem 6gig ddr3
x-fi extreme audio
ps2 keyboard
usb razer mouse
2 sata2 320 wd hd
2 ide 320 wd hd
2 segate 1tb hd
4 wd black 1tb hd
Visontek 5870
Hp Officejet Pro 8500 wireless
Lian Li PC-343B Modular Black Aluminum Cube Case
32in Olevia LCD HD TV
Ultimate Edition 3.4 64 bit
jslick1jim
U.E. Graduate
U.E. Graduate
 
Posts: 89
Joined: Fri Nov 21, 2008 1:00 pm
Age: 61
Operating System: Ultimate Edition 3.4 64 BIT



Re: vsftpd setup for outside access

Postby jslick1jim » Mon Jul 01, 2013 11:56 am

Ive used this how to http://www.noob2geek.com/linux/setup-vsftpd-debian-ubuntu/
and my router modem is a arris dg860a
ImageMotherboard Msi Eclipse Sli
Cpu intel i7 920
Mem 6gig ddr3
x-fi extreme audio
ps2 keyboard
usb razer mouse
2 sata2 320 wd hd
2 ide 320 wd hd
2 segate 1tb hd
4 wd black 1tb hd
Visontek 5870
Hp Officejet Pro 8500 wireless
Lian Li PC-343B Modular Black Aluminum Cube Case
32in Olevia LCD HD TV
Ultimate Edition 3.4 64 bit
jslick1jim
U.E. Graduate
U.E. Graduate
 
Posts: 89
Joined: Fri Nov 21, 2008 1:00 pm
Age: 61
Operating System: Ultimate Edition 3.4 64 BIT

Next

Return to Server and Security

Who is online

Users browsing this forum: No registered users and 0 guests

cron