FTP

This help contains the following topics:

Introduction

FTP is an application layer protocol for transferring files from one host to another over an IP network.

After FTP is enabled, the device can act as the FTP server. It uses TCP port 20 to transfer data and TCP port 21 to transfer control commands.

DSCP values for FTP packets

The DSCP value of an IP packet is carried in the ToS field of the packet. The DSCP value of a packet determines the transmission priority of the packet. The greater the DSCP value for an FTP packet sent by the device, the higher the priority.

User access control

Use ACLs to prevent unauthorized access. Only FTP clients that that match ACL rules can access the device. The following rules apply when you use an ACL to control access from FTP clients:

The ACL takes effect only for FTP connections to be established. It does not impact existing FTP connections.

FTP connection idle-timeout timer

The idle-timeout timer for FTP connections refers to the duration of inactivity after which the FTP server will disconnect from the client. That is, if no data transfer occurs on an FTP connection within the idle-timeout interval, the FTP server closes the FTP connection to release resource to avoid impact other user logins.

FTP service association with SSL server policies

After you associate an SSL server policy with the device, a client that supports SFTP will establish a secure connection to the device to ensure data security. To specify an SSL server policy for the FTP server, access the Resources >SSL page.

Restrictions and guidelines

After the FTP service is enabled, access System > Account Management > Account Settings > Administrators page to add an FTP user by configuring the username, password, and FTP directory for the user to log in to the device over FTP.