How to Install APF
1) Download and Install APF
cd /usr/src
wget http://www.rfxnetworks.com/downloads/apf-current.tar.gz
tar -xzf apf-current.tar.gz
rm -f apf-current.tar.gz
cd apf-*
sh ./install.sh
wget http://www.rfxnetworks.com/downloads/apf-current.tar.gz
tar -xzf apf-current.tar.gz
rm -f apf-current.tar.gz
cd apf-*
sh ./install.sh
2) Update the APF config file
pico /etc/apf/conf.apf
A few lines need to be edited:
DEVEL_MODE="0"
IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161"
IG_UDP_CPORTS="21,53,465"
EGF="1"
EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001"
EG_UDP_CPORTS="21,53,465,873"
DLIST_PHP="1"
DLIST_DSHIELD="1"
DLIST_RESERVED="0"
IG_TCP_CPORTS="20,21,22,25,53,80,110,143,443,465,587,993,995,1167,2082,2083,2086,2087,2095,2096,2719,3306,35000_36000,49152_49161"
IG_UDP_CPORTS="21,53,465"
EGF="1"
EG_TCP_CPORTS="20,21,22,25,37,43,53,80,113,443,465,873,2087,2089,2719,3306,20001"
EG_UDP_CPORTS="21,53,465,873"
DLIST_PHP="1"
DLIST_DSHIELD="1"
DLIST_RESERVED="0"
3) Make sure that passive ports are open and that the FTP server is configured to use passive ports:
pico /etc/pure-ftpd.conf
Change the following line:
# PassivePortRange 30000 50000
to:
PassivePortRange 35000 36000
4) Restart FTP
service pure-ftpd restart
5) Restart APF
service apf restart