Make ProFTPD listen to only internal addresses

There may be times that you want to run an FTP Server on the same machine as your Bynari Server.
Bynari makes use of ProFTPD for publishing freebusy information. In the default setup all addresses on port 21 are used, which leaves no default addresses available for something like vsftpd to use.

Telling ProFTPD to use another port is not enough, as the freebusy ftp login is hard coded to use 127.0.0.1 on port 21.

Follow the instructions below to bind ProFTPD to only internal addresses, leaving the external for vsftpd.

ProFTPD changes,
# vi /opt/insight/etc/proftpd.conf
Add the lines....
Bind 127.0.0.1 SocketBindTight on
Save and quit the file.
# vi /opt/insight/htdocs/is4web/xml/config.xml
Find the ProFTPD section, add the following lines after the "Port" directive.
<item id="231" valuetype="" option="Bind" hidden="1"> 127.0.0.1 </item> <item id="232" valuetype="" option="SocketBindTight" hidden="1"> on </item>
Save and quit the file. This ensures that if you ever change the ProFTPD config via the Bynari Interface the entries will be kept.

Vsftpd changes,
# vi /etc/vsftpd/vsftpd.conf
add the following to listen to only a single address:
listen_address=203.203.203.203
restart both services
# service vsftpd restart # /opt/insight/etc/rc/proftpd restart
if you check netstat you'll see the following listening on port 21
# netstat -apn |grep ":21" tcp 0 0 127.0.0.1:21 0.0.0.0:* LISTEN 13209/proftpd: (acc tcp 0 0 192.168.1.1:21 0.0.0.0:* LISTEN 13209/proftpd: (acc tcp 0 0 203.203.203.203:21 0.0.0.0:* LISTEN 8757/vsftpd
ProFTPD still grabbed 192.168.1.1, even though we only said 127.0.0.1. Thats fine, we only wanted to free up the external address for vsftpd.

---

other Linux Related Tips...

• BackupPC Customizations
  
• Bru Backup Switches
  
• Setup cfg2html - System Reporting Tool
  
• Disable TLS Connections in Sendmail
  
• Grub + Raid Howto
  
• Named - Turn off Lame Server Logging
  
• Lost Admin Password in Mambo or Joomla
  
• Recover Lost Mysql Password
  
• Mounting RAID partitions in a Rescue Environment
  
• Nagios Plugin - Check_dhcp
  
• Nagios check_proc Plugin Fails
  
• OpenOffice opens documents read only from Samba Share
  
• PPTP Proxy Server
  
• RedHat PPPOE script deletes default route
  
• Create a script to rename a bunch of files
  
• RHEL3 - Bash Broken (prior to Taroon Update 5)
  
• Snapgear/CyberGuard pptp forwarding rules
  
• SNMP Commands
  
• Socks Server
  
• Squid - Special Access Settings
  
• X Server wont start