Skip to main content

iptables permanet



  • cPRex Jurassic Moderator

    Hey there!  You'll need to pick one or the other - you'll want to make all your changes to CSF directly and not use any manual IPTtables commands or the two won't interact properly.

  • jlucho

    I am using Filezilla, for some strange reason, it does not want to connect to port21, only if I add the range 49152:65534, it allows a successful connection.

    Do you know what could be happening?

    Via CSF I have added the range 49152:65534, but I feel like I am making the server insecure by allowing too many ports

  • cPRex Jurassic Moderator

    That's the passive port range as outlined here:

    There's nothing wrong or insecure about having those ports opened as nothing is actively listening on them until you make an FTP connection.

    We do recommend using something other than Filezilla as they have experienced some known security issues.


Please sign in to leave a comment.