Skip to content
조회 수 721 추천 수 0 댓글 0


Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄


Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄

How to Set a Passive Port Range in Serv-U FTP Server  -  KB Article #2100

Related Articles -- 1044, 2091

As you probably already know, FTP uses multiple connections on multiple portsto perform file transfers.

Many firewalls "understand" plan text FTP and can open/close the appropriate ports dynamically if you specifically configure "FTP" (rather than "TCP port 21") on firewall rules. However, when FTPSis used, the control channel the firewall would usually read is encrypted, so firewall technicians find they need to open up ranges of high inbound TCP ports to get FTPS to work in passivemode. (We do not recommend the use of active modeFTPS transfers; fortunately most clients that can do FTPS select passive mode transfers by default.)

To avoid ridiculous ranges (e.g., "allow TCP from all to ports 1024-65535"), specific ranges of inbound passive ports can be configured on both your FTP server andyour firewall. These instructions show how to configure a passive FTP port range on Serv-U. (Related instructions show how torequire the use of passive mode transfersin Serv-U.)


1.Open your Serv-U Management Console and navigate to the "Server Settings" tab under "Server Limits & Settings". (Do not go to your Domain-level Limits & Settings.)

2.Scroll down until you see the "Network Settings" panel. Fill in a value for the "PASV Port Range". (We recommend starting with 50000-50009; you can use a narrower port range if you never hit simultaneous transfers; use a wider port range if you support more simultaneoustransfers.)

3.Click the "Save" button in the "Network Settings" panel.
4.To test, connect to Serv-U using an FTP clientthat is set up to use passive mode. Connect to the server from outside your firewall, attempt several directory listings and transfers, and make sure passive transfers work.

Related Articles

•Serv-U Firewall Rules
•Requiring Passive Transfers

Additional Notes

•Firewall rules that prohibit all outbound connections from Serv-U should also be implemented; no outbound connections are needed when passive mode FTP transfers are performed.
•These instructions also apply when Serv-U Gatewayis used to avoid deploying Serv-U in a DMZ segment.
•Alsoremember to require the use of passive modeon Serv-U.

출처 : http://www.serv-u.com/kb/2100/How-to-Set-a-Passive-Port-Range-in-ServU-FTP-Server


List of Articles
번호 제목 글쓴이 날짜 조회 수
85 인터넷 전용선의 종류 및 가격 JAESOO 2021.01.02 1
84 전용회선방식에 대한 이해와 비교 JAESOO 2021.01.02 4
83 [Windows NT] netstat 명령어를 이용한 라우팅 테이블 확인 JAESOO 2017.11.08 536
82 원격 액세스 인증 프로토콜 (EAP, MS-CHAP v2, CHAP, PAP) JAESOO 2017.11.03 438
81 OSI model – Layer 4: Transport (TCP and UDP with Scapy) JAESOO 2017.11.03 937
80 TCP flag(URG, ACK, PSH, RST, SYN, FIN) JAESOO 2017.11.03 566
79 OSI 7 Layer 개요 JAESOO 2017.10.30 473
78 윈도우에서 arp cache 삭제/초기화 하는 방법 JAESOO 2017.06.27 806
77 OSI 7 Layer 모델과 TCP/IP 모델 JAESOO 2016.11.06 279
76 Reverse DNS - 등록및 확인 JAESOO 2016.09.23 390
75 파일질라(filezilla) 디렉터리 목록 조회 실패 JAESOO 2016.07.01 1445
74 시만텍(Symantec) 솔루션 적용 구성도 JAESOO 2015.06.19 723
73 [기술자료] 전용선 JAESOO 2015.04.16 474
72 전용회선의 종류 JAESOO 2015.04.16 464
71 [이도경 칼럼] 올해 인터넷전화 도입시 주의사항 10가지 2 JAESOO 2015.04.16 769
70 [이도경 칼럼] 올해 인터넷전화 도입시 주의사항 10가지 1 JAESOO 2015.04.16 307
» How to Set a Passive Port Range in Serv-U FTP Server - KB Article #2100 JAESOO 2015.01.21 721
68 초고속 정보통신 건물 앰블럼 시험항목 JAESOO 2014.06.26 1433
67 Digital 통신용 UTP 케이블의 종류와 특성 JAESOO 2014.06.26 1756
66 디지털 통신용 UTP Cable의 종류와 특성 이해 JAESOO 2014.06.26 1908
Board Pagination Prev 1 2 3 4 5 Next
/ 5

PageViews   Today : 974   Yesterday : 1,632   Total : 22,233,725  /  Counter Status   Today : 479   Yesterday : 696   Total : 1,816,381
Site Info   Member : 252  /  Total documents : 1,303   New documents : 0  /  Total comments : 26

Edited by JAESOO

sketchbook5, 스케치북5

sketchbook5, 스케치북5

나눔글꼴 설치 안내

이 PC에는 나눔글꼴이 설치되어 있지 않습니다.

이 사이트를 나눔글꼴로 보기 위해서는
나눔글꼴을 설치해야 합니다.

설치 취소