Skip to content
조회 수 697 추천 수 0 댓글 0


Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄


Prev이전 문서

Next다음 문서

크게 작게 위로 아래로 댓글로 가기 인쇄

How to Set a Passive Port Range in Serv-U FTP Server  -  KB Article #2100

Related Articles -- 1044, 2091

As you probably already know, FTP uses multiple connections on multiple portsto perform file transfers.

Many firewalls "understand" plan text FTP and can open/close the appropriate ports dynamically if you specifically configure "FTP" (rather than "TCP port 21") on firewall rules. However, when FTPSis used, the control channel the firewall would usually read is encrypted, so firewall technicians find they need to open up ranges of high inbound TCP ports to get FTPS to work in passivemode. (We do not recommend the use of active modeFTPS transfers; fortunately most clients that can do FTPS select passive mode transfers by default.)

To avoid ridiculous ranges (e.g., "allow TCP from all to ports 1024-65535"), specific ranges of inbound passive ports can be configured on both your FTP server andyour firewall. These instructions show how to configure a passive FTP port range on Serv-U. (Related instructions show how torequire the use of passive mode transfersin Serv-U.)


1.Open your Serv-U Management Console and navigate to the "Server Settings" tab under "Server Limits & Settings". (Do not go to your Domain-level Limits & Settings.)

2.Scroll down until you see the "Network Settings" panel. Fill in a value for the "PASV Port Range". (We recommend starting with 50000-50009; you can use a narrower port range if you never hit simultaneous transfers; use a wider port range if you support more simultaneoustransfers.)

3.Click the "Save" button in the "Network Settings" panel.
4.To test, connect to Serv-U using an FTP clientthat is set up to use passive mode. Connect to the server from outside your firewall, attempt several directory listings and transfers, and make sure passive transfers work.

Related Articles

•Serv-U Firewall Rules
•Requiring Passive Transfers

Additional Notes

•Firewall rules that prohibit all outbound connections from Serv-U should also be implemented; no outbound connections are needed when passive mode FTP transfers are performed.
•These instructions also apply when Serv-U Gatewayis used to avoid deploying Serv-U in a DMZ segment.
•Alsoremember to require the use of passive modeon Serv-U.

출처 : http://www.serv-u.com/kb/2100/How-to-Set-a-Passive-Port-Range-in-ServU-FTP-Server


List of Articles
번호 제목 글쓴이 날짜 조회 수
83 [Windows NT] netstat 명령어를 이용한 라우팅 테이블 확인 JAESOO 2017.11.08 494
82 원격 액세스 인증 프로토콜 (EAP, MS-CHAP v2, CHAP, PAP) JAESOO 2017.11.03 405
81 OSI model – Layer 4: Transport (TCP and UDP with Scapy) JAESOO 2017.11.03 876
80 TCP flag(URG, ACK, PSH, RST, SYN, FIN) JAESOO 2017.11.03 518
79 OSI 7 Layer 개요 JAESOO 2017.10.30 445
78 윈도우에서 arp cache 삭제/초기화 하는 방법 JAESOO 2017.06.27 658
77 OSI 7 Layer 모델과 TCP/IP 모델 JAESOO 2016.11.06 242
76 Reverse DNS - 등록및 확인 JAESOO 2016.09.23 336
75 파일질라(filezilla) 디렉터리 목록 조회 실패 JAESOO 2016.07.01 1061
74 시만텍(Symantec) 솔루션 적용 구성도 JAESOO 2015.06.19 687
73 [기술자료] 전용선 JAESOO 2015.04.16 443
72 전용회선의 종류 JAESOO 2015.04.16 440
71 [이도경 칼럼] 올해 인터넷전화 도입시 주의사항 10가지 2 JAESOO 2015.04.16 747
70 [이도경 칼럼] 올해 인터넷전화 도입시 주의사항 10가지 1 JAESOO 2015.04.16 288
» How to Set a Passive Port Range in Serv-U FTP Server - KB Article #2100 JAESOO 2015.01.21 697
68 초고속 정보통신 건물 앰블럼 시험항목 JAESOO 2014.06.26 1416
67 Digital 통신용 UTP 케이블의 종류와 특성 JAESOO 2014.06.26 1728
66 디지털 통신용 UTP Cable의 종류와 특성 이해 JAESOO 2014.06.26 1885
65 통신 네트워크 관련용어정리 (기본 통신네트워크, 데이터통신 네트워크, 영상통신 네트워크) JAESOO 2014.06.26 17862
64 전기 연선의 굵기(SQ), 가닥(C), 단위 읽는 방법과 해석 JaeSoo 2013.12.20 8739
Board Pagination Prev 1 2 3 4 5 Next
/ 5

PageViews   Today : 518   Yesterday : 2,844   Total : 21,428,056  /  Counter Status   Today : 101   Yesterday : 413   Total : 1,739,033
Site Info   Member : 251  /  Total documents : 1,254   New documents : 0  /  Total comments : 26

Edited by JAESOO

sketchbook5, 스케치북5

sketchbook5, 스케치북5

나눔글꼴 설치 안내

이 PC에는 나눔글꼴이 설치되어 있지 않습니다.

이 사이트를 나눔글꼴로 보기 위해서는
나눔글꼴을 설치해야 합니다.

설치 취소