FTP Server - need education (on all of it)

MichaelD

Lifer
Jan 16, 2001
31,528
3
76
I want to setup an FTP server at my house to be left powered up 24/7. Not a gaming server (my DSL is too slow for that) I just want to be able to "go out there" from wherever I am and snatch things like Word docs/JPEGs/Excel sheets/etc at will. *EDIT* Something exactly like what LAST has

I know nothing about FTP, but am very familiar with networked drives if that means anything. Here are some other facts.

1. My LAN at home is behind a hardware firewall (router, actually) I want it to stay that way.

2. I would like to have my FTP server password-protected. Something along the lines of I type the addy 123.34.23.01 (or whatever) and a dialog box pops up. No p-word, no entry.

3. I want to have the server isolated from the rest of my LAN as much as possible. I realize that if someone REALLY knows what they are doing, there's little to stop them, but I want to keep the average hacker kid away from the rest of the LAN

Is there a resource I can read up on to teach me how to do all this stuff? If someone could please point me in the right direction, I'd appreciate it. Thanks.
Something exactly like what this guy has
 

KingNothing

Diamond Member
Apr 6, 2002
7,141
1
0
Serv-U is a great FTP server program. I went from zero FTP experience (aside from accessing one) to running a working server in 2 minutes. As far as being behind a firewall...not sure. You'll probably have to configure your router's software to open port 21. FWIW, I run Zone Alarm as a software firewall and my FTP gets along with it just fine.
 

royaldank

Diamond Member
Apr 19, 2001
5,440
0
0
Serv-U is a nice program that is real easy to setup. I don't think it's free though (after the first 30 days). WarFTP is free but can be a b!tch to set up if you aren't real sure what's going on (and you wont until you use it awhile).

As for the firewall, you have to open a port on your router to allow traffic. Port 21 (usually for FTP) may be open by default, but look in the book to make sure. You can also change the port of your FTP to something other than 21 to try and avoid anybody searching through IPs on port 21. Make it something strange like 601.

As for keeping it seperated from the lan...I'd suggest making your connection to the lan from the ftp server password protected (so that anyone on the ftp machine including yourself would have to log in each time to access network places. This might cut down this threat a bit. But, I'm not real good on LAN security, so you may want to seek others advice on that.
 

MichaelD

Lifer
Jan 16, 2001
31,528
3
76
Good morning guys. Thanks for the replies. My port 21 is currently closed. I have the stock filters that come preprogrammed up as well as some custom ones that a buddy (who isn't around any more :() helped me out with. My home LAN is pretty much invisible, right now, but I could read the manual for my router and I'm pretty sure I could open up a port. :)


Your replies are a great start for me. Thanks again.
 

MichaelD

Lifer
Jan 16, 2001
31,528
3
76
OK, I reread your posts...guess I wasn't too awake earlier. So, I have to get a specific FTP Program to run an FTP server? I"m not opposed to buying some new software. How much do these things usually go for? There aren't as expensive as say, an OS, are they?
 

MichaelD

Lifer
Jan 16, 2001
31,528
3
76
Thanks for the linky, Blinderbomber. Off the CNet page, I got a link for Smart FTP and it's freeware to boot. I've used this before to DL files from other folks. What do you guys think of Smart FTP?
 

Rakkis

Senior member
Apr 24, 2000
841
1
0
There seems to be a misunderstanding.

You need to get an FTP server. Not a client. A client views/access the content in a server.
Much like the Anandtech website does not run ON netscape/IE even though you use these to access it.


I came across a very nice freeware FTP server just last night.
 

rh71

No Lifer
Aug 28, 2001
52,844
1,049
126
Yup... you need an FTP Server, not a client. I use BPFTP Server (NOT to be confused with BulletProof FTP client. I'm running BPFTP Server on my WIN2k machine behind a Linksys router/firewall and all you have to do is open up ports 20 & 21 (authentication and data) through the Linksys and keep BPFTP running in the background (systray or system service).

So when a user hits my IP address thru IE or an FTP client (with PASV mode off - important for running FTPs behind routers/firewalls)... it finds BPFTP Server running... authenticates the user/pass from BPFTP Server, then allows/denies access. Thru BPFTP Server, you would specify directory access, anti-hammering, etc. etc...

I just used BPFTP Server as an example... another popular one is Serv-U as mentioned above. If you install IIS, it comes with Microsoft FTP (server, not client) also... but I don't recommend that for vulnerability reasons.
 

MichaelD

Lifer
Jan 16, 2001
31,528
3
76
Rakkis and rh71, you guys rock! :cool: Thanks for clearing up my (considerable) confusion and for the linkies. I'll get this stuff down yet. There's so much I don't understand about the nuts and bolts of this kind of stuff; thanks for taking the time to educate me. :)


*EDIT*


<< So when a user hits my IP address thru IE or an FTP client (with PASV mode off - important for running FTPs behind routers/firewalls)... it finds BPFTP Server running... authenticates the user/pass from BPFTP Server, then allows/denies access. Thru BPFTP Server, you would specify directory access, anti-hammering, etc. etc... >>



What is PASV mode and anti-hammering, please?
 

Rakkis

Senior member
Apr 24, 2000
841
1
0
Hammering = repeated attempts to log into an ftp server when it's busy. it tends to slow down speeds on the server as well as make for ***really*** wordy logs.

info on PASV (passive) mode