1.安装服务

#yum -y instal vsftpd

2.修改配置

#vi /etc/vsftpd/vsftpd.conf

标黄为必需修改，其他选项按需修改（ps:对应被动模式选项配置选项不存在，可自行添加）

# Allow anonymous FTP? (Beware - allowed by default if you comment this out).

anonymous_enable=NO

 

# Make sure PORT transfer connections originate from port 20 (ftp-data).

connect_from_port_20=YES

pasv_enable=YES

pasv_min_port=1000

pasv_max_port=2000

 

# When "listen" directive is enabled, vsftpd runs in standalone mode and

# listens on IPv4 sockets. This directive cannot be used in conjunction

# with the listen_ipv6 directive.

listen=YES

 

# This directive enables listening on IPv6 sockets. By default, listening

# on the IPv6 "any" address (::) will accept connections from both IPv6

# and IPv4 clients. It is not necessary to listen on *both* IPv4 and IPv6

# sockets. If you want that (perhaps because you want to listen on specific

# addresses) then you must run two copies of vsftpd with two configuration

# files.

# Make sure, that one of the listen options is commented !!

listen_ipv6=NO

3.iptables放行

-A INPUT -p tcp --dport 20:21 -j ACCEPT

-A OUTPUT -p tcp --dport 20:21 -j ACCEPT

-A INPUT -p tcp --dport 1000:2000 -j ACCEPT

-A OUTPUT -p tcp --dport 1000:2000 -j ACCEPT

4.用户建立

因为ftpusers、user_list中均有root，说明默认禁止root登录FTP，因此可以使用非root其他用户直接登录FTP，访问路径默认用户路径/home/用户名

5.登录方式

windows：百度一堆方法软件

linux：

# ftp 124.172.154.66

Connected to 124.172.154.66.

220 (vsFTPd 3.0.2)

530 Please login with USER and PASS.

530 Please login with USER and PASS.

KERBEROS_V4 rejected as an authentication type

Name (124.172.154.66:root): idchost

331 Please specify the password.

Password: 

230 Login successful.

Remote system type is UNIX.

Using binary mode to transfer files.

ftp> ls

227 Entering Passive Mode (124,172,154,66,4,102).

150 Here comes the directory listing.

-rw-rw-r--    1 1000     1000         2397 Aug 21 11:15 domain.txt

-rw-rw-r--    1 1000     1000         5429 Aug 21 11:45 domain_ip.txt

226 Directory send OK.

ftp> quit

221 Goodbye.