Use IIS to set up FTP

Source: Internet
Author: User
Tags ftp site ftp client file transfer protocol

 

2.2 solution 1 B: use IIS to set up FTP

I. How to set up FTP in IIS:

If you only want to create a small FTP server with no more than 10 concurrent online users, and do not transmit large data volumes at the same time, you can use IIS 5.0 as the server software (IIS is only applicable to Windows NT/2000/XP operating systems ).
1. Install
IIS components are not installed in Windows XP by default. You must manually add and install IIS components. Go to the control panel, find "Add/delete programs", and select "Add/delete Windows Components". In the displayed "Windows component wizard" window, select Internet Information Service (IIS. The "√" background color before this option is gray, because the FTP service component is not installed in Windows XP by default. Click "details" in the lower-right corner. In the pop-up "Internet Information Service (IIS)" window, find "File Transfer Protocol (FTP) service", and click "OK.
After installation, restart the instance. Install Windows NT/2000/XP in the same way.
2. Set
After the computer restarts, the FTP server starts to run, but some settings are required. Click Start> All Programs> Administrative Tools> Internet Information Service. In the Internet information service window, find "Default FTP site", right-click, in the pop-up context menu, select "properties ". In "properties", we can set the FTP server name, IP address, port, access account, FTP directory location, and the message received when the user enters FTP.
1) basic FTP site information
Go to the "ftp site" tab, where the "Description" option is the name of the FTP site. You can enter it as needed, for example, "my website "; the "ip address" is the Server IP address, and the system defaults to "all unallocated". This parameter is not required. However, if there are two or more IP addresses in the drop-down list, it is best to specify a public IP address; "TCP port" is generally still set as the default port 21; "connection" is used to set the maximum number of connections allowed to connect to the server at the same time; "connection timeout" is used to set a waiting time. If the online time of the user connected to the server exceeds the waiting time without any operation, the server will automatically disconnect the user.
2) Set accounts and their Permissions
Many FTP sites require users to enter the user name and password to log on. This user name and password are called accounts. Different users can use the same account to access the site. Multiple accounts can be set for the same site, and each account can have different permissions, such as uploading and downloading, some allow download only.
3) Security Settings
On the "Security Account" tab, "Allow anonymous connections" and "Allow anonymous connections only" are displayed. The default value is "Allow anonymous connections". In this case, the FTP server provides anonymous logon. "Allow anonymous connections only" is used to prevent users from accessing the account with administrative permissions. After selection, even the Administrator account cannot log on, FTP can only be managed through "local access" on the server. The "ftp site operator" option is used to add or delete accounts with certain permissions on the FTP server. Different from other Professional FTP server software, IIS manages accounts based on Windows user accounts. It does not allow users to access FTP servers and adds or deletes accessible accounts, you must first set a Windows User Account in "Computer Management" in the "Management Tools" provided by the operating system, then, add or delete an FTP site operator on the "Security Account" tab. However, for Windows 2000 and Windows XP Professional Edition, the system does not provide the "ftp site operator" account addition and deletion function, but only provides one administrator account.
Tip: Anonymous Logon generally does not require the user to enter the user name and password to log on successfully. If necessary, use "anonymous" as the user name and use any email address as the password to log on.
4) set the user logon directory
Finally, set the FTP home directory (the initial location after the user logs on to FTP), go to the "home directory" tab, and select the root directory of the FTP site in "local path, and set the read, write, and directory access permissions for this directory. The difference between UNIX and MS-DOS in the directory list style is that when you set g \ FTP as the site root directory, the former will display the main directory as "\", and the latter as "g \ FTP ".
After the configuration is complete, the FTP server is actually built. If the preceding IP address is 218.1.1.1, the user uses the FTP client software (used to log on to the FTP server to upload/download software, such as CuteFTP and flashfxp). Unless otherwise specified, the FTP client software mentioned in this article takes CuteFTP Pro 2.0 as an example.) Enter 218.1.1.1 in the Host field and 21 in the port field. The address of this server is expressed as FTP // 218.1.1.121. Although IIS is easy to install and easy to set up, its functions are not powerful, and management is also very troublesome. Especially, it is complicated to set up a new basic authorized access account, in addition, IIS has poor security and is vulnerable to viruses such as "Red code" that specifically attack IIS vulnerabilities. Therefore, many people prefer to use third-party FTP server software to set up IIS.

Ii. Management of FTP servers set up by ISS

Although IIS is easy to install, its management functions are not strong. It only supports Simple account management, directory permission settings, message settings, and connection user management.
1. Account Management
Unlike Serv-U, IIS manages Accounts according to Windows user accounts. If you want to add an authorized account whose username and password are DYS to the FTP server, you must first add this account in windows.
1) Open "Computer Management" in "Administrative Tools", find "user" under "local users and groups", right-click and select "new user ".
2) enter the user name and password in the pop-up "new user" window. After confirmation, the user will be created in windows.
3) Open "Internet Information Service" in "Administrative Tools" and go to the "properties" setting window of "Default FTP site, on the "Security Account" tab, find "ftp site operator ". You can see that all members in the "Administrators" group are authorized accounts by default. If you are using a Windows 2000 Server, click the "add" button next to it to add your DYS account. If not, the "add" and "delete" buttons are dimmed, optional. Can I add my DYS account? Of course.
4) return to "Computer Management", right-click the user name you just created, open the "properties" setting, and delete the default "users" group on the "affiliated" tab, click "add". In the displayed "select group" window, click "Advanced> Search now" (figure 1) and select the "Administrators" group in the search results, then you can confirm.
5) to delete an account, delete it directly in "Computer Management.
Tip: if it is not for a Windows 2000 Server version, the account will automatically have all the privileges of the system administrator "Administrator" after you add an account. As you can imagine, once your account password is stolen, it will pose a great security risk.
2. Directory management
1) set the virtual directory
Most of the time, there are too many files to be uploaded, and the disk space of the home directory originally set by the server is often not enough. What should I do? In this case, you need to set the virtual directory. The virtual directory is to map other directories to the Home Directory of the FTP server. In this way, the Home Directory of an FTP server can include many directories with different drive letters and different paths, instead of being limited by the disk space. When you log on to the main directory, you can perform operations on the account according to its permissions, just like operating sub-directories in the main directory. If the user is locked in the main directory, this function allows them to access other directories outside the main directory.
Here we assume that we want to set the d \ MTV directory to the virtual directory music under the g \ FTP directory. In "Internet Information Service", right-click "Default FTP site" and select "New> virtual directory. Enter "Music" in "virtual directory alias", and select "d \ MTV" in "ftp site content directory ", in "access permission", Hook "read" and "write" and exit. Log on to FTP using DYS account to check if there is an additional "Music" directory? Next, you can upload or download files to the directory.
2) read and write permission settings
The permission settings for IIS are relatively simple, and only three permissions are provided for each directory: Read (download allowed), write (upload allowed) and record access (the user's access to this directory is recorded in the log ). You can set the home directory in the "Default FTP site" attribute, or in the "properties" of the virtual directory.
Tip: if the permission set for the home directory conflicts with the permission for the virtual directory, the permission for the home directory prevails. For example, if the permission set in the main directory is read and write, and the music permission is set to read only, the music permission will be overwritten by the main directory permission and will automatically have the write permission.
3. Message settings
Go to the "messages" tab in the "Default FTP site" attribute, and you can set the message to display in the FTP client software status window when you log on to and exit the server. The "title" and "welcome" will appear when the user logs on. "exit" is the farewell message displayed when the user exits the server.
4. Connect to user management
On the FTP site tab, you can easily manage connected users. "Limit" is used to set the maximum number of connections allowed by the server at the same time. If it is not for a Windows 2000 Server version, the "unlimited" option is not available, and the maximum number of connections cannot exceed 10. "Connection timeout" can be used to set the number of seconds when a connection user is idle and will be automatically kicked out by the server. This effectively prevents the user from wasting the maximum number of connections on the server. Click "current session" in the lower-right corner to view the account used for online connection and the current status. Select a user and click "Disconnect" to remove the user from the server.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.