Site Tools


nas-ftp

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
nas-ftp [2022/01/13 01:30] – [FTP Server Configuration]-clarity hogwildnas-ftp [2023/06/25 17:56] (current) – [Limits] -condense hogwild
Line 1: Line 1:
 ====== FTP Server ====== ====== FTP Server ======
  
-The built-in FTP (File Transfer Protocol) Server is an alternative way to transfer files in/out of your router and its attached storage.+The built-in FTP (File Transfer Protocol) Server is an alternative way to transfer files to/from your router and its attached storage. This menu contains settings to configure that server. It is divided into sections including: FTP Server Configuration, Directories, Limits, Custom Configuration and User Accounts. 
 + 
 +Before using FTP, you may want to consider the pros and cons of using it versus the NFS Server (in a *nix environment) or File Sharing via Samba. There are significant differences between them. 
  
 ===== FTP Server Configuration ===== ===== FTP Server Configuration =====
  
-**Enable FTP Server**:+{{:pasted:20220107-052410.png}}\\  \\
  
-  [No] \\ The FTP Server is disabled. +**Enable FTP Server:**
-  [Yes, WAN and LAN] \\ The FTP is Server is enabled for both WAN and LAN users. +
-  [Yes, LAN only]\\ The FTP Server is enabled for LAN users only.+
  
-\\ **TLS support**: Checking this option enables support for TLS-encrypted communication.+  No - The FTP Server is disabled. 
 +  Yes - The FTP Server is enabled for WAN and LAN users. 
 +  * Yes, LAN only The FTP Server is enabled for LAN users only.
  
-**FTP Port**: Here, you specify the port to be used for communications. (Default: TCP 21)+\\ **TLS support:**  Checking this option enables support for TLS-encrypted FTP communications.
  
-**Anonymous User Access**:+**FTP Port:**  Here, specify the port to be used for communications. (DefaultTCP 21)
  
-This dropdown allows you to choose whether anonymous users are allowed access to the FTP Server and which file rights they are given.+**Anonymous User Access:**
  
-  * [Disabled]  \\ Anonymous users are not given access+This lets you choose whether anonymous users are given access to the FTP Server and which file rights they are given.
-  * [Read Write] \\ Anonymous users are given read and write access. +
-  * [Read Only] \\ Anonymous users are given only read access, +
-  * [Write Only] \\ Anonymous users are given write access only.+
  
-**Allow Admin Login**: Enables your local system administrator account as a user for the FTP service.+  Disabled - Anonymous users are not given access. 
 +  Read Write - Anonymous users are given read/write access. 
 +  Read Only - Anonymous users are given read access only. 
 +  Write Only - Anonymous users are given write access only.
  
-**Log FTP requests and responses**The FTP Server will save all FTP activity (logins/logouts/uploads/downloads/etcetera) to the syslog facility.\\  \\+ \\ **Allow Admin Login:** Enables your local system administrator account as a user for the FTP service. 
 + 
 +**Log FTP requests and responses:** The FTP Server will save all FTP activity via syslog to "/var/log/messages" including: 
 + 
 +  * Logons 
 +  * Logoffs 
 +  * Uploads 
 +  * Downloads 
 +  * and more.\\  \\
  
  
 ===== Directories ===== ===== Directories =====
  
-\\ {{:pasted:20220107-053110.png}}\\+\\ {{:pasted:20220107-053110.png}}\\  \\
  
-**Anonymous Root Directory**This specifies the location at filesystem-level visible by anonymous connections.+**Anonymous Root Directory:**  This specifies the filesystem location visible to anonymous connections.
  
-**Public Root Directory**This filesystem location is accessible by any defined FTP user.+**Public Root Directory:** This specifies the filesystem location accessible to any defined FTP user.
  
-**Private Root Directory**This filesystem location is accessible only by the owner. It indicates the location of the Root private directory. Each user will have a protected subfolder under this location.+**Private Root Directory:** This filesystem location is accessible only by the owner. Each user will have a protected subfolder under this location.
  
-**Directory Listings**:+**Directory Listings:  **This setting controls users' ability to do directory listings.
  
-This controls users' ability to do directory listings.+  * Enabled - Users are permitted to do directory listings. 
 +  * Disabled - Users are not permitted to perform listings. 
 +  * Disabled for Anonymous - Anonymous users aren't permitted to do directory listings.
  
-  * [Enabled] \\ Users are permitted to do directory listings. 
-  * [Disabled] \\ Users are not permitted to do directory listings. 
-  * [Disabled for Anonymous] \\ Anonymous users are not permitted to do directory listings. 
  
 ===== Limits ===== ===== Limits =====
  
-\\ {{:pasted:20220107-054226.png}}\\  **Maximum Users Allowed to Log in**: Define the maximum number of logged in users. Any additional user trying to log in above the limit will be rejected.\\  **Maximum Connections from the same IP **FTP clients allows you to open multiple sessions from the same client  (IP)this option allows you to control such behaviour.\\  **Maximum Bandwidth for Anonymous Users **: Built-in FTP throttling will impose a bandwidth limit (upload/download) for each anonymous user connected.\\  **Maximum Bandwidth for Authenticated Users**: Same as above but this limit if defined will control the amount of bandwidth each authenticated user can benefit from. **Idle Timeout**: Disconnect users after a number of seconds of inactivity.\\  **Limit Connection Attempts** This option works only when FTP is enabled on the WAN. If selected two new fields will appear\\  {{:pasted:20220107-060617.png}}\\  Here you can define the maximum number of attempt within a given time-frameAny more frequent attempt will be rejected.\\+\\ {{:pasted:20220107-054226.png}}\\  \\ 
 + 
 +**Maximum Users Allowed to Log in:**  This sets the maximum number of logged-in users at onceUsers above the limit are rejected. 
 + 
 +**Maximum Connections from the same IP** FTP lets a user log on via multiple sessions from the same address. Herespecify how many simultaneous connections will be allowed for the same user. 
 + 
 +**Maximum Bandwidth for Anonymous Users:**  FTP throttling will limit the amount of bandwidth available to what's specified here for each anonymous user. 
 + 
 +**Maximum Bandwidth for Authenticated Users:**  FTP throttling will limit each authenticated users' bandwidth to this amount. 
 + 
 +**Idle Timeout:**  This specifies the timeout period, in seconds, until a user is disconnected due to inactivity. 
 + 
 + \\ 
 + 
 +\\ {{:pasted:20220107-060617.png}} 
 + 
 + \\ 
 + 
 +**Limit Connection Attempts:**  This option works when FTP is enabled on the WAN. If selectednew fields appear where you can define the maximum number of logon attempts in a given time period. Further connection attempts will be rejected.\\ 
 + 
 + 
 +===== Custom Configuration ===== 
 + 
 +\\ {{:pasted:20220107-054851.png?703x334}}\\  \\ 
 + 
 +**Custom configuration**: Hereyou can enter advanced settings. The software underlying the FTP Server is Vsftpd. [[https://security.appspot.com/vsftpd.html|vsftpd]]\\ You are advised to consult the official documentation before entering settings in this field. 
 + 
 + 
 +===== User accounts ===== 
 + 
 +This is the area where you define FTP user accounts. User accounts defined here will be given only FTP service rights. No operating system accounts are created. 
 + 
 +**Username:**  Here, enter the ftp user account name. 
 + 
 +**Password:**  Here, enter the ftp user account password. 
 + 
 +**Access:** 
 + 
 +  * Read/Write - The FTP user is given read and write access. 
 +  * Read Only The FTP user is given only read access. 
 +  * View Only - The FTP user is allowed only to view directory contents. 
 + 
 + \\ 
 + 
 +**Read/Write:**  Choosing this setting provides the user full access. 
 + 
 +**Read only**:  Choosing this settings allows the user only to browse and download. 
 + 
 +**View Only:**  Selecting this setting mean the user can only browse directories.
  
-Custom configuration - User Accounts\\  {{:pasted:20220107-054851.png}}\\  **Custom configuration**: is where you define advanced parameter. Please note the software is Vsftpd hence you need to consult its official documentation if you plan to affect this field.\\  **User accounts**:This is where you define FTP users. Users defined here will have meaning only within the FTP service e.g. no system account is created. The access field requires some explanation as you can set it to: Read/Write -Read Only - View Only - Private\\  **Username**: The user account name\\  **Password**: Its password\\  **Read/Write**: Is essentially full access\\  **Read only**: can only browse and download\\  **View Only**: can only browse FIXME\\  **Private**: Can only access the own folder (no public area)\\+**Private:**  Choosing this will mean the user can only access their own folder (and not the public area).\\
  
  
nas-ftp.1642037415.txt.gz · Last modified: 2022/01/13 01:30 by hogwild