Blog

Managed File Transfer and Network Solutions

Setting up a Linux FTP Server - Part 3

Posted by John Carl Villanueva on Sun, May 06, 2018 @ 05:04 PM

This is Part 3 of our 3-part blog post showing how to set up a Linux FTP Server. Let's recap what we've accomplished so far. In Part 1, you learned how to prep your Linux server by installing Java. Then in Part 2, you learned how to install JSCAPE MFT Server and configure it for remote administration via its admin web interface. Here in our last installment, we'll teach you how to activate an FTP service on your managed file transfer Linux server using that administrative web interface.

Connecting to your JSCAPE MFT Server instance

The first thing you need to do at this point is to connect to your JSCAPE MFT Server instance. Let's assume that, most of the time, you'll be connecting remotely. So, you need to know the IP address of your MFT Server instance. You can do obtain that information by simply running the ifconfig command.

 

ifconfig linux

 

Once you've obtained your Linux machine's IP address (e.g. 192.168.100.102), you can then move on to the machine where you want to administer MFT Server from and fire up your favorite web browser. 

Adding a domain and an FTP service   

Connect to your MFT Server instance by entering http://[mft server IP address]:[port number of admin service] into your web browser's URL box. For example, in my case, the IP address is 192.168.100.102 and the port number is 11880. So, I'm entering http://192.168.100.102:11880. You'll know you have connected successfully if you see the login screen.

 

login mft server

 

Login into the web interface. Once inside, navigate to the Domains menu. 

 

domains menu

 

Click the Add button to add a new domain.

 

add a new domain

 

Give the new domain a name and click the Next button. 

 

domain name ftp server

 

As part of the domain creation process, you'll be asked to select a file transfer protocol. Since the default protocol is already FTP/S, you may leave everything as is.

 

add ftp service

 

As mentioned in Part 2, the Host IP address 0.0.0.0 stands for all (IPV4) network interfaces on the local machine. Port 21 is the default port number for FTP, so we recommend you retain that. As for the Type, there are 4 types supported:

  1. Regular,
  2. Explicit SSL,
  3. Forced Explicit SSL, and
  4. Implicit SSL.

The default, which is Explicit SSL, already supports both the unencrypted regular FTP and its secure, encrypted version, FTPS, so we suggest you leave that as is as well. For more information about explicit, forced explicit, and implicit modes of FTP, click that link.

The example_rsa private key selected there, which will be used in FTPS connections, is not for production use. You will have create your own key in Keys > Server Keys. But for now, you can leave that as is. Recommended read: Roles of Server and Client Keys in Secure File Transfers

Click Next to proceed.

The succeeding dialog contains settings for the domain log service. You may change the location (Directory path) of your domain log files as well specify how often the log files will be rotated (i.e. daily, weekly, monthly, or depending on the file size). We suggest you leave those as is for now. 

Click OK to finalize the domain creation process. 

You should then see your newly created domain on the main screen.

 

Adding an FTP/S service to an existing domain

In case you already created a domain but didn't choose FTP/S as the initial protocol or you may have accidentally deleted the FTP/S service or you simply want to add an additional FTP service with another port number, you may do so by editing the domain (just select it and click the Edit button).

 

editing existing domain for ftp service

 

You may now add an FTP/S service by going to the domain's Services node and then clicking the Add button.

 

editing existing domain for ftp service

 

In the succeeding screen, select FTP/S from the Protocol drop-down list.

 

select FTPS protocol

 

You'll then be presented with the same dialog box we discussed in the previous section. You may want to review that for reference. Click OK when you're done. 

 

ftps settings dialog box 

 

 

You should then see your newly added FTP service under your Services node. 

 

ftp service in services node

 

Adding users for your FTP service

 

Once you have your FTP/S service ready, you can then create user accounts so that people can start using your new FTP service. To create a user account, go to the Users node then click the Add button. You'll then be asked to select a User Template. Assuming what you have there is a fresh install of JSCAPE MFT Server, you'll only find one template in the drop-down list - the Default. Later on, when you're more familiar with the Manager, you will want to create user templates and then create users off of them. This will make the task of adding users much faster. But for now, just click OK.

 

ftp service user template

  

Fill-in all pertinent information into the fields provided. For now, just put in a Name, a Login name, and that login name's corresponding Password. Don't forget to confirm the password. Click OK.

 

john smith new user ftp service

 

That user account will then be added to your list of Users

 

newly added user ftp service

 

Testing your new Linux FTP server

Once you've got your FTP service and user accounts ready, you can then proceed to test them using your favorite FTP client. Here's a screenshot of AnyClient, a free and highly versatile file transfer client, connecting to my Linux FTP server.

 

anyclient connecting to ftp server

 

The file system you see under the section labeled Remote System in the screenshot above is only a virtual file system.

The JSCAPE MFT Server's Virtual File System is quite different from your actual OS' file system. More specifically, the users you create as well as the permissions you grant them to files and directories in your JSCAPE server are different from the users and permissions found in your operating system.

By default, JSCAPE MFT Server user accounts are actually jailed user accounts. With respect to the entire Linux file system, these users will not be able to access files and directories above them. This user may create folders under his virtual file system and he may upload files to those folders but he won't be able to access any of the folders above his topmost folder. 

This is just one of the many secure file transfer features built into your JSCAPE MFT Server. For more information about the security features on JSCAPE MFT Server, read the article "10 Essential Attributes of a Secure File Transfer"  

Try JSCAPE MFT Server now

 

Download Now

 

 Want to be updated on posts like this? Connect with us...

 

 

Topics: JSCAPE MFT Server, Managed File Transfer, Linux FTP Server