42.1. FTP resource

42.1. FTP resource
	Chapter 42. FTP - File Transfer Protocol

The Abilis FTP server supports both active and passive mode and FTP over SSL operations.

Virtual directories are used to limit the access to the real file system.

File naming convention from the client's point of view is UNIX-like:

The path delimiter is "/";
File names start with "/" without volume specification (such as A: in DOS-like notation).

Each user has configurable rights for each path.

42.1.1. Activating the FTP resource

Add the resource to the Abilis system with the following command:

[16:35:45] ABILIS_CPX:a res:ftp

RES:FTP ALREADY EXISTS

The FTP resource may already exist in the system, but may not yet be active: set it active with the command:

[16:35:50] ABILIS_CPX:s act res:ftp

COMMAND EXECUTED

	Caution
	After adding or setting the FTP active, you must restart the Abilis to make the resource running (use the command warm start to reboot the Abilis).

[17:14:59] ABILIS_CPX:s p ftp act:yes

COMMAND EXECUTED

[17:15:17] ABILIS_CPX:d p ftp

RES:Ftp - Not Running, Not Saved (SAVE CONF) ----------------------------------
       ------------------------------------------------------------------------
       DESCR:File_Transfer_Protocol_Server
       LOG:NO            ACT:YES   max-cli:4        max-ssl-sess:0
       tcp-locport-c:21            tcp-locport-d:20              TOS:0-N
       IPSRC:*                     IPSRCLIST:#                     
       DATA-TOUT:30      DT:300    REJ-1024:YES     SAME-IP:YES  SYSDRIVES:NO
       MAX-PWD-FAIL:4              DELAY-PWD-FAIL:5    
       MAX-IP-SES:NOMAX            MAX-USER-SES:2      
       ANONYMOUS-USER:DENY         REGISTERED-USER:PERMIT
       ANONYMOUS-HOMEDIR:

42.1.2. FTP resource parameters

Use the below command to display the parameters of the resource; the d p ftp ? command shows the meaning of all parameters.

[12:18:35] ABILIS_CPX:d p ftp

Run    DESCR:File_Transfer_Protocol_Server
       LOG:NO            ACT:YES   max-cli:4        max-ssl-sess:0
       tcp-locport-c:21            tcp-locport-d:20              TOS:0-N
       IPSRC:*                     IPSRCLIST:#                     
       DATA-TOUT:30      DT:300    REJ-1024:YES     SAME-IP:YES  SYSDRIVES:NO
       MAX-PWD-FAIL:4              DELAY-PWD-FAIL:5    
       MAX-IP-SES:NOMAX            MAX-USER-SES:2      
       ANONYMOUS-USER:DENY         REGISTERED-USER:PERMIT
       ANONYMOUS-HOMEDIR:

Meaning of the most important parameters:

LOG

Logging functionalities activation/deactivation.

ACT

Operation activation [NO, YES].

max-cli

Maximum number of FTP client sessions [1..255]. It must be grater or equal then 'max-ssl-sess'. (every client needs 2 FTP connections).

max-ssl-sess

Maximum number of sessions using SSL [0..255]. It must be lower or equal then 'max-cli'.

tcp-locport-c

Local TCP port for incoming control connections [1..65535].

tcp-locport-d

Local TCP port for outgoing data connections [1..65535]

TOS

TOS or DS field:

p-t: PRECEDENCE-TOS, 'p' [0..7], 't' [N, D, T, R, C];
bbbbbb: DS value bit by bit, 'b' [0, 1];

IPSRC

Client IP address allowed to connect to FTP server [*, 1-126.x.x.x, 127.0.0.1, 128-223.x.x.x].

IPSRCLIST

Incoming requests: list of further accepted source IP addresses [#, IP/IR/RU/MR listname].

DATA-TOUT

Data transmit/receive time-out [30..3600 sec.].

DT

Inactivity time-out [30..3600 sec.].

REJ-1024

Refuse active data connections to client's ports lower then 1024 [NO, YES].

SAME-IP

Restrict data connection to the same IP of the control connection [NO, YES].

SYSDRIVES

Allows creating a /sysdrives/ virtual directory with <drive> subdirs [NO, YES].

MAX-PWD-FAIL

Maximum number of password attempts [1-255].

DELAY-PWD-FAIL

Delay after failed PASS command [1-255 sec.].

MAX-IP-SES

Limits number of simultaneous CONTROL connections that can be established from a client's IP address [NOMAX, 1..255].

MAX-USER-SES

Limits number of simultaneous CONTROL connections that a user can establish from the SAME IP with the SAME USER login [NOMAX, 1..255].

ANONYMOUS-USER

Permit/deny anonymous log-in [DENY, PERMIT].

REGISTERED-USER

Permit/deny log-in of registered users [DENY, PERMIT].

ANONYMOUS-HOMEDIR

Anonymous home directory, initiating and terminated by the '/' (slash). Max 128 characters. Spaces require double quotes (E.g. "/str1/str2 str3/").

The following command allows the administrator to change the configuration of the resource:

s p ftp parameter:value...

	Caution
	To activate the changes made on the upper case parameters, execute the initialization command init res:ftp; while to set act the changes made on the lowercase parameters a save conf and an Abilis restart are required (i.e. With warm start command).