34.1. FTP resource

Abilis FTP server supports both active and passive mode and FTP over SSL operations.

Virtual directories are used to limit the access to real file system.

File naming convention from client's point of view is UNIX-like:

Each user has configurable rights for each path.

34.1.1. Activating the FTP resource

Add the resource to the Abilis system with the following command:

[16:35:45] ABILIS_CPX:a res:ftp

RES:FTP ALREADY EXISTS

The FTP resource may already exist in the system, but may not yet be active: set it active with the command:

[16:35:50] ABILIS_CPX:s act res:ftp

COMMAND EXECUTED
[Caution]Caution

After adding or setting the FTP active, you must restart the Abilis to make the resource running (use the command warm start to reboot the Abilis).

[17:14:59] ABILIS_CPX:s p ftp act:yes

COMMAND EXECUTED

[17:15:17] ABILIS_CPX:d p ftp

RES:Ftp - Not Running, Not Saved (SAVE CONF) ----------------------------------
       ------------------------------------------------------------------------
       DESCR:File_Transfer_Protocol_Server
       LOG:NO            ACT:YES   max-cli:4        max-ssl-sess:0
       tcp-locport-c:21            tcp-locport-d:20              TOS:0-N
       IPSRC:*                     IPSRCLIST:#                     
       DATA-TOUT:30      DT:300    REJ-1024:YES     SAME-IP:YES  SYSDRIVES:NO
       MAX-PWD-FAIL:4              DELAY-PWD-FAIL:5    
       MAX-IP-SES:NOMAX            MAX-USER-SES:2      
       ANONYMOUS-USER:DENY         REGISTERED-USER:PERMIT
       ANONYMOUS-HOMEDIR:

34.1.2. FTP resource parameters

Use the below command to display the parameters of the resource; the d p ftp ? command shows the meaning of all parameters.

[12:18:35] ABILIS_CPX:d p ftp

Run    DESCR:File_Transfer_Protocol_Server
       LOG:NO            ACT:YES   max-cli:4        max-ssl-sess:0
       tcp-locport-c:21            tcp-locport-d:20              TOS:0-N
       IPSRC:*                     IPSRCLIST:#                     
       DATA-TOUT:30      DT:300    REJ-1024:YES     SAME-IP:YES  SYSDRIVES:NO
       MAX-PWD-FAIL:4              DELAY-PWD-FAIL:5    
       MAX-IP-SES:NOMAX            MAX-USER-SES:2      
       ANONYMOUS-USER:DENY         REGISTERED-USER:PERMIT
       ANONYMOUS-HOMEDIR:

Meaning of the most important parameters:

LOG

Logging functionalities activation/deactivation.

ACT

Runtime FTP activation/deactivation.

max-cli

Maximum number of simultaneous client connections (every client needs 2 FTP connections).

max-ssl-sess

Maximum number of sessions using SSL [0..255]. It must be lower or equal then 'max-cli'.

IPSRC

Client IP address allowed to connect to FTP server.

IPSRCLIST

List of additional client IP addresses allowed to connect to FTP server

DATA-TOUT

Data transmit/receive time-out.

DT

Inactivity time-out.

REJ-1024

Enables/disables data connections to client's ports lower then 1024 (only for active mode).

SAME-IP

Allows to restrict data connection to the same IP of the control connection (for both active and passive mode).

SYSDRIVES

Allows to create a /sysdrives/ virtual path from which it is possible to access to all system drives and their subdirectories.

MAX-PWD-FAIL

Maximum number of password attempts.

DELAY-PWD-FAIL

Delay after failed PASS command.

MAX-IP-SES

Limits number of simultaneous CONTROL connections that can be established from a client's IP address.

MAX-USER-SES

Limits number of simultaneous CONTROL connections that an user can establish from the SAME IP with the SAME USER login.

ANONYMOUS-USER

Allows anonymous log-in.

REGISTERED-USER

Allows registered users log-in.

ANONYMOUS-HOMEDIR

Anonymous home directory, initiating and terminated by the '/' (slash) character.

The following command allows the administrator to change the configuration of the resource:

s p ftp parameter:value...

[Caution]Caution

To activate the changes made on the upper case parameters, execute the initialization command init res:ftp; while to set act the changes made on the lowercase parameters a save conf and an Abilis restart are required (i.e. with warm start command).