Can I install FTP after the HestiaCP installation?

Hello, the thing is that I installed HestiaCP and at the moment of selecting the modules at Install | Hestia Control Panel, I didn’t select vsftpd or proftpd.

How can I enable FTP functionality after the installation of HestiaCP?

Hello @alixasac,

HestiaCP doesn’t support “yet” to add/remove packages after installation but, you could install it manually. I could write a script for you to install vsftpd so, tell me your operating system and whether you installed iptables+fail2ban. I’m a bit busy today so I don’t know when I could have free time to write it, so be patient :wink:


1 Like

apt install vsftpd

cp -f /usr/local/hestia/install/deb/vsftpd/vsftpd.conf /etc/
touch /var/log/vsftpd.log
chown root:adm /var/log/vsftpd.log
chmod 640 /var/log/vsftpd.log
touch /var/log/xferlog
chown root:adm /var/log/xferlog
chmod 640 /var/log/xferlog
update-rc.d vsftpd defaults > /dev/null 2>&1
systemctl start vsftpd >> $LOG
check_result $? “vsftpd start failed”

Open port 21,12000-12100

And Update in /usr/local/hestia/conf/hestia.conf
Edit: FTP_SYSTEM=‘’ to FTP_SYSTEM=‘vsftpd’


@eris already post the steps but to do it a bit user friendly and avoid problems with functions and variables, I’ve created a script (the script also enables rules for fail2ban).

Create a file like this in your hestiacp server:

touch /root/install-vsftpd-hestia
chmod 750 /root/install-vsftpd-hestia

Now edit the file /root/install-vsftpd-hestia, with vi, nano, or whatever editor you are used to use and paste below content:

#!/usr/bin/env bash

# Install vsftpd
if ! apt -y install vsftpd; then
        echo "Error installing vsftpd, I can't continue"
        exit 100

# Add conf and configure logs
cp -f "$HESTIA"/install/deb/vsftpd/vsftpd.conf /etc/
touch /var/log/vsftpd.log
chown root:adm /var/log/vsftpd.log
chmod 640 /var/log/vsftpd.log
touch /var/log/xferlog
chown root:adm /var/log/xferlog
chmod 640 /var/log/xferlog
update-rc.d vsftpd defaults &>/dev/null
echo "Conf and logs for vsftpd created"

# Start vsftpd service
if systemctl start vsftpd; then
        echo "vsftpd start successfull"
        echo "vsftpd start failed"

# IF firewall rule doesn't exist, add it
if ! "$BIN"/v-list-firewall | grep -q '21,12000-12100'; then
        "$BIN"/v-add-firewall-rule ACCEPT '' '21,12000-12100' TCP FTP
        echo "Firewall rule created for ports 21,12000-12100"

# Change FTP_SYSTEM variable
sed -i "s/FTP_SYSTEM=.*/FTP_SYSTEM='vsftpd'/g" "$HESTIA"/conf/hestia.conf
echo "FTP_SYSTEM variable changed to vsftpd in hestia.conf"

# If fail2ban is installed, enable vsfptd-iptables rules
if [[ -e "$jail_local" ]]; then
        fline=$(grep -n vsftpd-iptables -A 2 "$jail_local")
        fline=$(echo "$fline" | grep enabled | tail -n1 | cut -f 1 -d -)
        sed -i "${fline}s/false/true/" "$jail_local"
        systemctl restart fail2ban
        echo "Rule for vsftpd enabled in jail.local and fail2ban service restarted"

        echo "Seems fail2ban is not installed"

echo "Done!"

Save the file and execute it


I hope this helps.


1 Like

So, do these steps work for Ubuntu 20.04?

thank you

Yes it should not matter…

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.