home-network/network-info.org

Network & Router Info

• links
• Router Configuration
  • WiFi Settings
    • links to access the router
  • Internet Connection
  • DHCP Settings
  • Open Ports
    • Current Port Forwards
• FTP
  • FTP Server Configuration Overview
  • vsftpd.conf Configuration
  • Optional To-Do
    • Forward passive ports in router (30000–31000)
    • Enable TLS (FTPS) for secure login & transfer
• Raspberry Pi Information

links

• TOC - Home Computer

Router Configuration

WiFi Settings

Category	Value
SSID	ronny-wifi
Password	2reishit2ara
Router IP	192.168.0.1

links to access the router

• http://tplinkwifi.net/webpages/index.html?t=baf9a7a7
• http://192.168.0.1

Internet Connection

Category	Value
Internet IP Address	94.159.253.187
Subnet Mask	255.255.255.255
Default Gateway	82.102.129.99
Primary DNS	80.179.52.100
Secondary DNS	80.179.55.100

DHCP Settings

Category	Value
DHCP Server	Enabled
IP Address Pool	192.168.0.2 - 192.168.0.253

Open Ports

These are the active port forwarding rules configured on the router for local devices. All are currently marked as open and mapped directly from external to internal ports on the same device.

Current Port Forwards

Service Name	Device IP	External Port	Internal Port	Protocol	Status
GIT	192.168.0.63	222	222	TCP	Open
SSH	192.168.0.63	22	22	TCP	Open
HTTPS	192.168.0.63	443	443	TCP	Open
FTP	192.168.0.63	21	21	TCP	Open
HTTP	192.168.0.63	80	80	TCP	Open
Postgres - stg.ronnyabraham	192.168.0.63	5433	5433	TCP	Open

FTP

FTP Server Configuration Overview

Setting	Value	Notes
Server IP (LAN)	192.168.0.63	Your Raspberry Pi's local IP
Domain (optional)	ftp.ronnyabraham.com	Public address (requires DNS pointing to your home IP)
FTP Username	ftpuser	Restricted to chroot jail: /home/ftpuser/ftp
FTP Password	[your-password]	Chosen during user setup
Login Port	21 (TCP)	Already forwarded
Passive Port Range	30000–31000 (TCP)	Must be forwarded in router for PASV mode
FTP Root Dir	/mnt/storage/srv/ftp	Physical storage location
FTP Mount (seen by user)	/home/ftpuser/ftp	Bind-mounted for vsftpd
Passive Mode Enabled	YES	Required for most clients like FileZilla, ncftp
Encrypted FTP (FTPS)	NO	Not yet set up — optional for secure external access
Firewall	None or default iptables	UFW not installed
External Access Ready?	YES, if passive ports forwarded	Port forwarding must include 21 + 30000–31000

vsftpd.conf Configuration

Location: `/etc/vsftpd.conf`

Add or ensure the following lines are present to enable passive mode:

pasv_enable=YES
pasv_min_port=30000
pasv_max_port=31000
pasv_address=ftp.ronnyabraham.com

After changes, restart the service:

sudo systemctl restart vsftpd

Optional To-Do

DONE Forward passive ports in router (30000–31000)

TODO Enable TLS (FTPS) for secure login & transfer

Enabling TLS (also known as FTPS) encrypts both the FTP login credentials and file transfers, protecting them from interception over the internet.

This is especially important if you plan to access your FTP server remotely from public networks.

Steps to enable:

1. Generate or obtain an SSL certificate and key (self-signed or from a trusted CA)
2. Edit `/etc/vsftpd.conf` to enable SSL:

      ssl_enable=YES
      rsa_cert_file=/etc/ssl/certs/ssl-cert-snakeoil.pem
      rsa_private_key_file=/etc/ssl/private/ssl-cert-snakeoil.key
      force_local_data_ssl=YES
      force_local_logins_ssl=YES
      ssl_tlsv1=YES
      ssl_sslv2=NO
      ssl_sslv3=NO
      require_ssl_reuse=NO
      ssl_ciphers=HIGH

1. Restart vsftpd:

   sudo systemctl restart vsftpd

2. Configure your FTP client (e.g., FileZilla or ncftp) to use "FTP over TLS"

Raspberry Pi Information