Setting Options for the FTP Host

---

After creating an FTP host, you can set additional options or change the existing setup for the host. In the left pane, select the FTP host. The host's properties menu appears in the right pane.

Setting Timeouts for FTP Connections

You can set a timeout for FTP client connections to the FTP host. After this number of seconds, if the FTP server has not received a command from the FTP client, the client is disconnected.

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click General Options. The General Host Settings dialog appears.
3. In the Timeout (secs) box, enter a timeout value.
4. Click OK.

Setting Maximum Users

You can use the default settings for maximum number of users logged on to the FTP host, or you can change the settings as described here.

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click User Options. The User Settings dialog appears.
3. In the Maximum concurrent users box, enter the maximum number of users (including anonymous users) that can connect to the FTP host at the same time. The default is 1000 users.
4. In the Maximum Anonymous users box, enter the maximum number of anonymous users that can connect to the FTP host at the same time. The default is 200 users.
5. Click OK.

Note: If the user limit is exceeded, a System Administrator or Host Administrator can still log on using the Server Manager. Also, a System Administrator can always log on using an FTP client.

Entering zero for either option disables new connections. This provides a way to temporarily "stop" the FTP server, so you can update files. New connections are not allowed, but current connections will continue until the user logs off or the connection exceeds the timeout value. Setting Maximum concurrent users to zero disables any new connections, setting Maximum Anonymous users to zero disables only new anonymous connections.

Allowing Anonymous Access

You can allow anonymous access to an FTP host so that users can access specified folders on the host without needing a user account. Users can then log on using anonymous or ftp as the username and their e-mail address for the password (or no password), for example:

Username: anonymous
Password: rhyne@ipswitch.com

To enable anonymous access to the FTP host:

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click General Options. The General Host Settings dialog appears.
3. Select Allow anonymous access to this host.

   When an anonymous user logs on, they are placed in the host's top directory.

4. Optionally, set permissions for anonymous on any FTP folders. For example, you can use folders or virtual folder to create a download or an upload folder for anonymous users.
5. Click Apply.

When an anonymous user logs on to the FTP host, they will see the following files and folders:

• Any files in the top directory. Anonymous users can list and download these files. You can put a readme file that describes the contents of any public directories here.
• Any folders or virtual folders for which you have granted permissions to anonymous. Virtual folders appear in the host's top directory and reference a directory on the host.
• The users folder. If a user on the FTP host has a folder named public in their own folder, it appears under the users folder. For example, if the users fred and homer have public folders, an anonymous user will see a listing like the following when they list the users folder contents:

  /fred
  /homer

Anonymous users can list and download files in these public folders. You can hide a user's public folder by selecting Disable Public Access Directory in the user's properties or by selecting the Do not list user folders on the Users Properties page.

Hiding Files and Folders

You can hide a file or folder in any directory by prepending a $ character to the file or folder name and doing the following:

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click General Options. The General Host Settings dialog appears.
3. Select Hide $* files/folders to hide all files and folders whose name begins with a dollar sign ($) character, for example $banner.txt or $Marketing.

Setting Directory Listings to Use Local Time

By default, WS_FTP Server displays directory listings in GMT (Greenwich Mean Time). You can set the directory listings on the FTP host to use the host's local time.

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click General Options. The General Host Settings dialog appears.
3. Select Use local time for directory listings.

Using Banner, Welcome, and Exit Messages

You can create messages to send to an FTP client on successful connection, logon, and logoff. The FTP client usually displays these messages in the message log.

To create the messages for an FTP host:

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click Edit messages. The Edit Messages dialog appears.

3. In the edit boxes, enter text for the messages.
4. Click OK.

Banner Message. The FTP server sends this message to a user upon successful connection, before the user logs on. You can use this message to tell users about the organization of your FTP site, any rules, times of operation, mirror sites, or contact information. You can use the message variables to provide information, for example, that the FTP host has reached the maximum number of concurrent users.

Note: Please note that a Virtual host without an IP will not display a banner message. The Banner Message is displayed when a connection is first established. An IP-less virtual host is not connected to until a user logs in.

Welcome Message. The FTP server sends this message to a user upon successful logon. You can use the message variables to report information, such as the current number of files and the maximum for this user.

Exit Message. The FTP server sends this message to the user on logoff. You can use the message variables to provide statistics for the FTP session, for example, the number of files received and sent by the user.

The messages can also contain the following variables:

Variable	Description
%a	Current number of anonymous users for this host
%b	Maximum number of anonymous users for this host
%d	Number of files deleted by user
%f	Maximum number of files the user can have (or unlimited)
%e	Number of files the user currently has
%h	Hostname
%I	IP address of remote user
%k	Current number of users logged on
%l	Maximum number of users that can log on
%n	Fullname
%q	Maximum disk space the user can have (or unlimited)
%r	Number of files received by user
%s	Number of files sent by user
%u	User ID
%z	Current disk space used by the user

When these messages are created they are placed in the specified Top Directory of the Host. If this directory does not exist, the Messages will not be saved. You can either manually create this directory, or it will be automatically created when a user logs in. (You need write permission for that directory.)

Creating Message Files for Folders and Directories

You can create a file named $message.txt in any directory or folder and when a user changes to that directory or folder, WS_FTP Server displays the message. WS_FTP Server sends the $message.txt in response to the CWD (change working directory) or CDUP (change directory to up one level) command from the FTP client.

For example, when a user opens a directory or folder, you can display a message that refers them to a readme file for a description of the folder's contents.

The message can also contain any of the variables described in the previous section, "Using Banner, Welcome, and Exit Messages".

Setting Access by IP Address

You can control access to an FTP host by setting an IP address or range of addresses for which the FTP host either grants or denies access.

To grant access to a specific computer or group of computers:

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click Control Access. The Access Control properties appear.

   

3. Select Denied Access.
4. Click Add. The Grant Access For dialog box is displayed.

   

5. In the IP Address box, enter the IP address of the computer to be granted access to the server.
6. To grant access to a group of computers, select Group of Computers. In the IP Address and Subnet Mask boxes, enter the IP address and subnet mask for the group to be granted access. For example, if you have a class C address space of 156.21.50.0, enter a group address of 156.21.50.0 and a subnet mask of 255.255.255.0. This will grant access to those 254 systems.
7. Click OK to add the IP address(es) to the list. Access will be denied to all computers except those listed.
8. Click OK to save the changes. Note that you must stop and restart the FTP server for the changes to take affect.

To deny access to a specific computer or group of computers:

1. In the left panel, select the FTP host. The host's properties menu appears in the right panel.
2. Click Control Access. The Access Control properties appear.
3. Select Granted Access.

   

4. Click Add. The Deny Access On dialog box is displayed.
5. In the IP Address box, enter the IP address of the computer to be denied access to the server.
6. To deny access to a group of computers, select Group of Computers. In the IP Address and Subnet Mask boxes, enter the IP address and subnet mask for the group to be denied access. For example, if you have a class C address space of 156.21.50.0, enter a group address of 156.21.50.0 and a subnet mask of 255.255.255.0. This will deny access to those 254 systems.
7. Click OK to add the IP address(es) to the list. Access will be granted to all computers except those listed.
8. Click OK to save the changes. Note that you must stop and restart the FTP server for the changes to take affect.

Setting an Alias for the FTP Host

Many FTP sites use an alias in their Domain Name Server (DNS) system so they can assign a familiar name to the site. Rather than connecting to an FTP host using its actual hostname (for example, gyro.ipswitch.com), it may be easier for users to remember or guess a name like ftp.ipswitch.com. You can add a record to your DNS system to create such an alias, for example:

ftp IN CNAME gyro.ipswitch.com

Users could then log on to ftp.ipswitch.com. The alias also allows you to move your FTP site to another host without changing the hostname.

Other Options in General Host Settings

Disable extensions. When this option is selected, the server will no longer support FTP server extensions. Those extensions include XAUT and FEAT, as well as any customized SITE commands. Selecting this option will also disable SSL capabilities.

Enable SSL. Selecting this option allows SSL connections to the server.

Disable SSL. Selecting this option keeps users from connecting to the server through a secure connection. Once this option is set, you must clear it before users can use SSL connections.

Force SSL. Select this option to force users to make an SSL connection. While this does not change the way they are connecting automatically, it will refuse any connection not using SSL negotiations, and send an error message stating why the connection was refused.

Force SSL on Data Chan. Select this option to force users to make an SSL data connection, and to refuse any data channel connection attempt that is not SSL encrypted.

Allow 3rd party transfers. Selecting this option will allow users to transfer files from one server to another if both servers allow it.

Lock Files during upload. Select this option to lock files when they are being uploaded to the server.

Ipswitch, Inc. http://www.ipswitch.com

©Ipswitch 2003