How to Install APF: Difference between revisions
Docs admin (talk | contribs) No edit summary |
Docs admin (talk | contribs) No edit summary |
||
(3 intermediate revisions by the same user not shown) | |||
Line 8: | Line 8: | ||
sh ./install.sh</syntaxhighlight> | sh ./install.sh</syntaxhighlight> | ||
[2] | [2] Open the APF configuration file in your favorite text editor. | ||
< | |||
<pre> | |||
/etc/apf/conf.apf</pre> | |||
A few lines need to be edited, search your conf.apf file for the appropriate line and modify them to reflect the changes below: | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
DEVEL_MODE="0" | DEVEL_MODE="0" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161" | IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161" | ||
IG_UDP_CPORTS="21,53,465" | IG_UDP_CPORTS="21,53,465" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
EGF="1" | EGF="1" | ||
EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001" | EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001" | ||
EG_UDP_CPORTS="21,53,465,873" | EG_UDP_CPORTS="21,53,465,873" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
DLIST_PHP="1" | DLIST_PHP="1" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
DLIST_DSHIELD="1" | DLIST_DSHIELD="1" | ||
</syntaxhighlight> | |||
DLIST_RESERVED="0"</syntaxhighlight> | <syntaxhighlight lang="bash"> | ||
DLIST_RESERVED="0" | |||
</syntaxhighlight> | |||
[3] | [3] We now need to make sure that passive ports are open and that the FTP server is configured to use passive ports. In a text editor, open the pure-ftpd configuration file. | ||
< | |||
<pre> | |||
/etc/pure-ftpd.conf</pre> | |||
Change the following line: | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
# PassivePortRange 30000 50000</syntaxhighlight> | # PassivePortRange 30000 50000</syntaxhighlight> | ||
to: | |||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> |
Latest revision as of 17:20, 5 October 2012
[1] Download and Install APF <syntaxhighlight lang="bash"> cd /usr/src wget http://www.rfxnetworks.com/downloads/apf-current.tar.gz tar -xzf apf-current.tar.gz rm -f apf-current.tar.gz cd apf-* sh ./install.sh</syntaxhighlight>
[2] Open the APF configuration file in your favorite text editor.
/etc/apf/conf.apf
A few lines need to be edited, search your conf.apf file for the appropriate line and modify them to reflect the changes below:
<syntaxhighlight lang="bash"> DEVEL_MODE="0" </syntaxhighlight>
<syntaxhighlight lang="bash"> IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161" IG_UDP_CPORTS="21,53,465" </syntaxhighlight>
<syntaxhighlight lang="bash"> EGF="1" EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001" EG_UDP_CPORTS="21,53,465,873" </syntaxhighlight>
<syntaxhighlight lang="bash"> DLIST_PHP="1" </syntaxhighlight>
<syntaxhighlight lang="bash"> DLIST_DSHIELD="1" </syntaxhighlight>
<syntaxhighlight lang="bash"> DLIST_RESERVED="0" </syntaxhighlight>
[3] We now need to make sure that passive ports are open and that the FTP server is configured to use passive ports. In a text editor, open the pure-ftpd configuration file.
/etc/pure-ftpd.conf
Change the following line: <syntaxhighlight lang="bash">
- PassivePortRange 30000 50000</syntaxhighlight>
to:
<syntaxhighlight lang="bash"> PassivePortRange 35000 36000</syntaxhighlight>
[4] Restart FTP <syntaxhighlight lang="bash"> service pure-ftpd restart</syntaxhighlight>
[5] Restart APF <syntaxhighlight lang="bash"> service apf restart</syntaxhighlight>