How to Install APF: Difference between revisions
Docs admin (talk | contribs) No edit summary |
Docs admin (talk | contribs) No edit summary |
||
| Line 12: | Line 12: | ||
pico /etc/apf/conf.apf</syntaxhighlight> | pico /etc/apf/conf.apf</syntaxhighlight> | ||
A few lines need to be edited: | A few lines need to be edited, search your conf.apf file for the appropriate line and modify them to reflect the changes below: | ||
<syntaxhighlight lang="bash"> | <syntaxhighlight lang="bash"> | ||
DEVEL_MODE="0" | DEVEL_MODE="0" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161" | IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161" | ||
IG_UDP_CPORTS="21,53,465" | IG_UDP_CPORTS="21,53,465" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
EGF="1" | EGF="1" | ||
EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001" | EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001" | ||
EG_UDP_CPORTS="21,53,465,873" | EG_UDP_CPORTS="21,53,465,873" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
DLIST_PHP="1" | DLIST_PHP="1" | ||
</syntaxhighlight> | |||
<syntaxhighlight lang="bash"> | |||
DLIST_DSHIELD="1" | DLIST_DSHIELD="1" | ||
</syntaxhighlight> | |||
DLIST_RESERVED="0"</syntaxhighlight> | <syntaxhighlight lang="bash"> | ||
DLIST_RESERVED="0" | |||
</syntaxhighlight> | |||
[3] Make sure that passive ports are open and that the FTP server is configured to use passive ports: | [3] Make sure that passive ports are open and that the FTP server is configured to use passive ports: | ||
Revision as of 17:18, 5 October 2012
[1] Download and Install APF <syntaxhighlight lang="bash"> cd /usr/src wget http://www.rfxnetworks.com/downloads/apf-current.tar.gz tar -xzf apf-current.tar.gz rm -f apf-current.tar.gz cd apf-* sh ./install.sh</syntaxhighlight>
[2] Update the APF config file <syntaxhighlight lang="bash"> pico /etc/apf/conf.apf</syntaxhighlight>
A few lines need to be edited, search your conf.apf file for the appropriate line and modify them to reflect the changes below:
<syntaxhighlight lang="bash"> DEVEL_MODE="0" </syntaxhighlight>
<syntaxhighlight lang="bash"> IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161" IG_UDP_CPORTS="21,53,465" </syntaxhighlight>
<syntaxhighlight lang="bash"> EGF="1" EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001" EG_UDP_CPORTS="21,53,465,873" </syntaxhighlight>
<syntaxhighlight lang="bash"> DLIST_PHP="1" </syntaxhighlight>
<syntaxhighlight lang="bash"> DLIST_DSHIELD="1" </syntaxhighlight>
<syntaxhighlight lang="bash"> DLIST_RESERVED="0" </syntaxhighlight>
[3] Make sure that passive ports are open and that the FTP server is configured to use passive ports: <syntaxhighlight lang="bash"> pico /etc/pure-ftpd.conf</syntaxhighlight>
Change the following line: <syntaxhighlight lang="bash">
- PassivePortRange 30000 50000</syntaxhighlight>
to:
<syntaxhighlight lang="bash"> PassivePortRange 35000 36000</syntaxhighlight>
[4] Restart FTP <syntaxhighlight lang="bash"> service pure-ftpd restart</syntaxhighlight>
[5] Restart APF <syntaxhighlight lang="bash"> service apf restart</syntaxhighlight>