This help contains the following topics:
FTP is an application layer protocol for transferring files from one host to another over an IP network.
After FTP is enabled, the device can act as the FTP server. It uses TCP port 20 to transfer data and TCP port 21 to transfer control commands.
The DSCP value of an IP packet is carried in the ToS field of the packet. The DSCP value of a packet determines the transmission priority of the packet. The greater the DSCP value for an FTP packet sent by the device, the higher the priority.
Use ACLs to prevent unauthorized access. Only FTP clients that that match ACL rules can access the device. The following rules apply when you use an ACL to control access from FTP clients:
If no ACL is applied, all FTP clients can access the FTP server.
If the ACL does not exist or does not have rules, no FTP clients can access the FTP server.
If the ACL exists and has rules, only FTP clients permitted by the ACL can access the FTP server.
The ACL takes effect only for FTP connections to be established. It does not impact existing FTP connections.
The idle-timeout timer for FTP connections refers to the duration of inactivity after which the FTP server will disconnect from the client. That is, if no data transfer occurs on an FTP connection within the idle-timeout interval, the FTP server closes the FTP connection to release resource to avoid impact other user logins.
After you associate an SSL server policy with the device, a client that supports SFTP will establish a secure connection to the device to ensure data security. To specify an SSL server policy for the FTP server, access the Resources >SSL page.
After the FTP service is enabled, access System > Account Management > Account Settings > Administrators page to add an FTP user by configuring the username, password, and FTP directory for the user to log in to the device over FTP.