932
edits
Changes
Adding warning about obsolescence and security risk.
*Test your firewall by logging into a second PC (try both Windows and Linux) and attempt an FTP connection to your gateway PC. Test both local user as well as anonymous connections.
===Set up your FTP Server (Active Mode)===
{{Admon/important|Obsolete| Note that the material in this step is obsolete. Active mode is considered an even bigger security risk (to the client) than standard ftp. Most ftp clients do not even support active mode anymore. Note how you would perform these steps, but do not do them.}}
#Edit /etc/vsftpd/vsftpd.conf and disable Passive mode (so now only Active mode is enabled) and then restart vsftpd.
#Test your firewall by logging into a second PC (try both Windows and Linux) and attempt an FTP connection to your gateway PC. Test both local user as well as anonymous connections.
===Log Packets with Netfilter===
#On the firewall/gateway add iptables log rules to monitor ftp traffic (control and data) for the following: