I have SUSE 9.3 with Apache and vsftpd and all working fine. I would like to be able to ftp in through vsftpd but the Firewall in Suse is blocking me. I can turn it off and everything else works.

Yast lists some services that the firewall can be configured with but ftp is not one of them. I only need the server visible on local network for web development and would rather not turn it off completly each time I ftp.

I saw some information on configuring iptables but not enough to try it. This is my first Linux install so please bear that in mind.

Go into the Yast firewall module. Once in it select the "allowed services" section. In the advanced section open these ports.

In the TCP Ports box put "20 21" (separated by a space only).

In the UDP Ports box put "20"

Then exit and restart your firewall.

FYI, you can always get a clue to what you need to open by typing this in "cat /etc/services | grep ftp". The /etc/services file shows all the common ports used by various services. Although there will be quite a few FTP services listed, the top 3 are the generic ftp ports you are looking for. The second column shows how I got the numbers and the protocol.

If this is indeed your first install, please read the vsftpd docs very carefully. FTP can be tricky although vsftpd would be what I recommend to new ftp admins. Look at the chroot variable and see if that fits your scheme. It will lock people into the directory of your choice so they can't poke around where they shouldn't be.

GH,
Thanks for taking the time for a detailed explanation. That's what I needed.

As far as chroot goes I will be the only one using ftp on this server since it's only for my web development use.

I just tested and it's all good now thanks again to you.