# line 12: make sure value is [NO] (no anonymous)anonymous_enable=NO
# line 83,84: uncomment ( allow ascii mode )
ascii_upload_enable=YES
ascii_download_enable=YES# line 101,102: uncomment ( enable chroot )
chroot_local_user=YES
chroot_list_enable=YES# line 104: uncomment ( chroot list file )
chroot_list_file=/etc/vsftpd/chroot_list# line 110: uncomment
ls_recurse_enable=YES# line 115: change (if listening IPv4 only)
# if listning IPv4 and IPv6 both, specify [NO]
listen=YES
# line 124: change (if listening IPv6 only)
# if listning IPv4 and IPv6 both, specify [YES]
listen_ipv6=NO# add to the end
# specify root directory (if don’t specify, users’ home directory become FTP home directory)
local_root=public_html# use local time
use_localtime=YES# turn off for seccomp filter (if you cannot login, add this line)
seccomp_sandbox=NO
# add users you allow to move over their home directoryusername
▇Firewalld 設定
vim /etc/vsftpd/vsftpd.conf
# add to the end# fix PASV ports to allow FTP access with PASVpasv_enable=YES
pasv_min_port=21000
pasv_max_port=21010
firewall-cmd –add-port=21000-21010/tcp –permanent
firewall-cmd –reload