编辑:已通过在配置文件中添加 pasv_addr_resolve=yes 并使用以下命令为被动范围设置 iptables 例外来修复此问题:iptables -I INPUT -p tcp --dport pasvstart:pasvend -j ACCEPT
我已经转发了20和21以及50000-60000端口。
我无法从 LAN 或 Internet 访问该服务。
ftptest.net 结果:
Warning: Plaintext FTP is insecure. You should use explicit FTP over TLS.
Status: Resolving address of (public ip)
Status: Connecting to (public ip)
Warning: The entered address does not resolve to an IPv6 address.
Status: Connected, waiting for welcome message...
Reply: 220 (vsFTPd 3.0.2)
Command: CLNT https://ftptest.net on behalf of 2a02:2788:74:1b5c:b91f:d77c:f39f:4352
Reply: 530 Please login with USER and PASS.
Command: USER nasftp
Reply: 331 Please specify the password.
Command: PASS *********
Reply: 230 Login successful.
Command: SYST
Reply: 215 UNIX Type: L8
Command: FEAT
Reply: 211-Features:
Reply: EPRT
Reply: EPSV
Reply: MDTM
Reply: PASV
Reply: REST STREAM
Reply: SIZE
Reply: TVFS
Reply: UTF8
Reply: 211 End
Warning: The server does not indicate MLSD support. MLSD uses a well-specified listing format. Without MLSD, directory listings have to be obtained using LIST which uses an unspecified output format.
Command: PWD
Reply: 257 "/"
Status: Current path is /
Command: TYPE I
Reply: 200 Switching to Binary mode.
Command: PASV
Error: Connection timed out
Vsftpd 配置文件: http://pastebin.com/0JmDPsmv
任何帮助,将不胜感激!