我一直在浏览不同的论坛,但无法通过VSFTPD解决此连接拒绝问题.这是详细信息.
的vsftpd.conf
anonymous_enable=NO
local_enable=YES
write_enable=YES
local_umask=022
connect_from_port_20=YES
chroot_local_user=YES
listen=YES
pam_service_name=vsftpd
userlist_enable=NO
tcp_wrappers=NO
listen_port=18901
local_root=/ftp
log_ftp_protocol=YES
dual_log_enable=YES
pasv_enable=YES
pasv_promiscuous=YES
pasv_max_port=30100
pasv_min_port=30000
iptables的
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:20
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:21 state NEW
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:20
ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp spt:21
我的服务器在AWS中.我创建了一个转发器,它将端口21转发到18901.此外,在我的AWS安全组中,我允许21,18901,30000-30100.
我已多次重新安装VSFTPD并且我已验证服务正在运行.我也看到18901听.
最后,我可以在本地连接.
[root@ip-10-0-0-1 /]# ftp
ftp> o 10.0.0.1 18901
Connected to 10.0.0.1(10.0.0.1).
220 (vsFTPd 2.2.2)
Name (10.0.0.1:root): ftp_user
331 Please specify the password.
Password:
230 Login successful.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
227 Entering Passive Mode (10,0,0,1,117,109).
150 Here comes the directory listing.
drwxr-xr-x 1 501 501 0 Jul 21 15:22 file
-rw-r--r-- 1 501 501 0 Jul 21 15:21 file.txt
d--------- 1 0 0 0 Aug 01 14:59 pws
226 Directory send OK.
我无法从本地系统上的Filezilla或FTPTest.net连接
AWS安全策略(入站).出站对所有IP,所有端口开放.
SSH TCP 22 10.100.0.0/18
SSH TCP 22 10.0.0.0/16
Custom TCP Rule TCP 21 0.0.0.0/0
Custom TCP Rule TCP 18901 0.0.0.0/0
Custom TCP Rule TCP 30000 - 31000 0.0.0.0/0