On Wednesday 28 November 2007 22:50:24 Theo v. Werkhoven wrote: > Wed, 28 Nov 2007, by [EMAIL PROTECTED]: > > On Sunday 25 November 2007 12:42:25 Theo v. Werkhoven wrote: > > > Sun, 25 Nov 2007, by [EMAIL PROTECTED]: > > > > I've opened ports 20, 21 and 1025 to 1029 via SuSEfirewall2 on 10.3. > > > > > > > > If all the ports are taken is there a way of telling the next user to > > > > wait or try again later? As it is it just leaves them wondering and > > > > waiting and allowing more users makes the system too slow. > > > > > > > > Am I correct in assuming it's one port per user? > > > > > > You're not using the correct way of handling this. > > > Use vsftpd's 'max_clients' and 'max_per_ip' parameters to limit the > > > number of users. That way excess users get a sensible error when > > > they try to connect. > > > See vsftpd.conf(5) > > > > Thanks. Works well. > > > > Still need one port per connection.. > > Not possible with FTP. > This protocol needs a socket pair for both the Data and the Command > channel. > For active FTP TCP dest. port 21 and source port 20, for > passive FTP dest. port 21 plus a high dest. port. >
So, using passive for 5 users I need 21 and 1025 to 1029. Or will just one high port do for all 5 connections? -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
