The CommuniGate FTP module implements an FTP server for TCP/IP networks.
The FTP protocol allows an FTP client application to connect
to the Server computer and specify the user (Account) name and the password.
If access to the specified user Account is granted, the client application
can retrieve and update data inside that Account Personal File Site.
File Transfer Protocol
The File Transfer Protocol allows client computers to work with files
stored on remote servers. A computer running an FTP client
application connects to the server computer and provides account (user)
name and the password. If access to the specified user account is granted,
the client application sends protocol commands to the FTP server. These protocol
commands tell the server to list all files in the current directory, to change the
current directory, to retrieve, upload, rename, and remove files stored on the FTP server.
The CommuniGate Pro FTP module supports all related Internet
The CommuniGate Pro FTP module supports the REST command and it can resume
broken file transfer operations.
The CommuniGate Pro FTP module supports the GSSAPI authentication method. It can use
the established GSSAPI "context" for encryption and integrity protection of the control
and data channels.
The CommuniGate Pro FTP module supports the STLS command, as well as non-standard AUTH SSL and AUTH TLS-P
commands for establishing secure (TLS) communication links.
Configuring the FTP module
Use a Web browser to configure the FTP module. Open the Access page in the
WebAdmin Settings section.
- Use this setting to specify what kind of information the FTP
module should put in the Server Log. Usually you should use the Major
(password modification reports) or Problems (non-fatal errors)
levels. But when you experience problems with the FTP module, you may want
to set the Log Level setting to Low-Level or All Info:
in this case protocol-level or link-level details will be recorded in the
System Log as well. Since the FTP clients send passwords in the clear text
format, setting the Log to these setting for long periods of time can become
a security hole if the Log file can be copied from the Server computer.
The FTP module records in the System Log are marked with the FTP
- When you specify a non-zero value for the TCP/IP Channels setting,
the FTP module creates a so-called "listener" on the specified port(s). The module starts
to accept FTP connections from FTP clients. This setting is used to limit
the number of simultaneous connections the FTP module can accept. If there
are too many incoming connections open, the module will reject new connections,
and the users should retry later.
If the number of channels is set to zero, the FTP module closes the listener and releases
(unbinds from) the TCP port(s).
- By default, the FTP module Listener accepts clear text connections on the
TCP port 8021. Follow the
listener link to tune the FTP Listener.
If the server computer does not have any other FTP server software running, you may want to switch
the FTP Listener to the port 21 (the standard FTP port).
Note: The FTP protocol has a "NAT traversal" problem. When working in the "active" mode, the FTP server needs to
open data connections to the client computer, and if there is a NAT device between the FTP server and
the client computer, attempts to establish these data connections would fail. To solve this problem, most NAT devices/programs
implement an FTP proxy, but they activate this feature only if they detect an outgoing connection to the port 21.
If you use the FTP module with a non-standard port number (such as 8021), your users connecting from behind NAT devices
won't be able to do data transfers in the "active" mode (the "passive" mode should work correctly).
Providing Access to Personal File Sites
- As soon as an FTP user is authenticated, the current directory is set to the topmost directory
of the user Personal File Site. The FTP module allows a user to upload, download,
rename and remove Personal File Files. The FTP module also allows a user to
create, remove, and rename directories inside the Account Personal File Site.
CommuniGate® Pro Guide. Copyright © 1998-2006, Stalker Software, Inc.