ISPconfig on OpenVZ @ intoVPS blocks FTP connection

Discussion in 'Installation/Configuration' started by dynamind, Feb 13, 2013.

  1. dynamind

    dynamind Member


    I installed ispconfig on an intoVPS OpenVZ container.
    Now FTP connections don't get established, the trouble starts here:

    The vMachines is a Debian Squeeze 6.06. At the setup I noticed it would not be possible to reproduce the network config, looks like that:

    iptables shows:

    ftp client stops here:

    Is there any mistake in my config?
    As soon as I clear the firewall all connections are functional again but that's not very secured.

    Please help.
    Last edited: Feb 13, 2013
  2. till

    till Super Moderator Staff Member ISPConfig Developer

    First of all, you dont need a firewall on your ispconfig server as it will not give you additional security. On your server you run only services that shall be accessible from outside when you followed the perfect setup guide, so you would have to open these ports in your firewall anyway. But then there is nothing left to be blocked by the firewall, so there is no security benefit in running it and you can turn it off. A firewall is only usefull if you want to make services avilable to a internal network only without exposing them to the internet.

    Back to your problem, if you want to run a firewall and want to use passive ftp, then you have to define a ftp passive port range in pure ftpd and then open the same ports in your firewall.

Share This Page