CSF is a great Linux firewall to use instead of raw IP tables and includes a WHM add on module for cPanel servers, but getting FTP to run successfully needs a couple of tweaks especially if the server is a VPS using Virtuozzo as not all the IP Table modules get loaded.
As a work around you need to open more higher numbered ports so FTP can connect, in WHM go to CSF>Firewall Configuration> and allow TCP_In 30000:50000 - restart the firewall.
Then you need to edit your ftp server to use these passive ports, so it's either pure or pro, edit the conf file:
Uncomment the line below:
Restart the FTP Server
and all should be ok, make sure that the port range in both the TCP_IN and range in the ftp config are the same.
As a work around you need to open more higher numbered ports so FTP can connect, in WHM go to CSF>Firewall Configuration> and allow TCP_In 30000:50000 - restart the firewall.
Then you need to edit your ftp server to use these passive ports, so it's either pure or pro, edit the conf file:
Code:
/etc/pure-ftpd.conf
Code:
# Port range for passive connections replies. - for firewalling. PassivePortRange 30000 50000
Restart the FTP Server
Code:
service ftpd restart
Comment