Personal FTP site & domain Resolution of the complete solution (Super Classic) [text]
Integration of the various forums on the creation of FTP and domain name resolution of the essence of the content,
The main content from the new dynamic forum
All FTP software download please go to the shooter net
=========================================
First, the preface
1. What is intranet
Intranet computers use NAT (Network address Translation) protocol to access the Internet through a public gateway. Intranet computers can send connection requests to other computers on the Internet, but other computers on the Internet cannot send connection requests to computers in the intranet, so it is not possible to establish an FTP server in the usual way.
The IP address of intranet has the following 3 kinds of forms:
10.*.*.*
172.16.*.* to 172.31.*.*
192.168.*.*
2. Two ways of intranet building FTP
2.1, Dynamic domain name and virtual Private law:
Suitable for conditions: No access to the gateway server, can not do professional port mapping.
such as: Branch mai network dynamic domain name and virtual dedicated services within the network Professional Edition. (Truehost).
2.2. Port Mapping Method:
Applicable conditions: To be able to access the gateway server, and as a port mapping.
such as: port mapping software Porttunnel.
3, about the domain name
Domain name can solve the problem of no fixed Internet IP. such as "peanut shell" and so on.
The method mentioned in above 2.1 does not require additional domain name services because the service itself has been provided.
4. About Serv-u
A common tool software for establishing FTP.
Ii. establishment of the FTP program
Programme I, Serv-u
Applicable conditions: Have fixed Internet IP address.
Plan II, serv-u+ peanut shell
Applicable conditions: There is a fixed Internet IP address.
Solution Three, serv-u+ peanut shell +porttunnel Port mapping
Applicable conditions: Intranet IP, can control gateway server and set port mapping.
Programme IV, Serv-u+truehost
Applicable conditions: Intranet IP, can not control the gateway server.
Scheme one: serv-u (Version 4.1.0.0) Full Introduction
Serv-u is a well-known FTP server software, you can easily set up FTP servers, the following detailed explanation Serv-u installation, setup, use and answer some common problems.
The latest version of Serv-u is 4.1.0.0, run under Windows 9x/2000/nt/xp, and the download address is shown at the top of the article.
First, content index
1. Installation and general settings
Installation------operation of Chinese
Create domain---Add user---Set user directory---Set user permissions
2. Advanced Settings:
Create Group---Grant group permissions
Modify Service port
Block Visitor IP
Kicking people
Set up server reply information
3. Access to the sample:
Internet Explorer
Cute FTP
4. Frequently Asked Questions:
Second, installation and general settings
1. Run the Setup program
Yun_qi_img/30_406.1.jpg
2. Select Installation path
Installation path This is usually overlooked because everyone has a bad habit of installing all programs under the default%system%\program files\. Ordinary software is not a big problem, but this is very dangerous to the service class software and the security class software, by default user's permission to program files is accessible and can be run, for hackers, you can turn off your firewall virus wall without having to get administrator privileges. The need to share the file, very simple to achieve the goal of complete intrusion.
Therefore, it is advisable to install the serv-u into a safe directory with a set of permissions.
Yun_qi_img/30_406_1.1.jpg
Terror of the Authority
Yun_qi_img/30_406_2.1.jpg
This is the normal Windows Media Player directory attribute (visible serv-u installed here ...)
3. Simple Wizard after installation
After installation, Serv-u will ask you a few questions, including: New domain IP, domain description, service port, anonymous user under this domain, anonymous user's directory, build other users, etc.
Here you can choose nothing, exit serv-u after installing Serv-u patch
Yun_qi_img/30_406_3.1.jpg
After the patch is installed, the serv-u becomes the Chinese version, and the next setting will be easier to understand and very clear.
Serv-u supports the creation of multiple domains, that is, multiple FTP servers, but these servers cannot use the same port at the same time, each server must use a different port, the computer has 65,535 available network ports, minus the port reserved by the system, users can choose the port there are many.
Here's how to set up an FTP server in an empty serv-u.
Third, the establishment of FTP server
Yun_qi_img/30_406_4.1.jpg
Run serv-u, expand Local Server, right-click New domain, or press Insert directly.
1. Server IP for new domain
Yun_qi_img/30_406_5.1.jpg
As the figure shows: if you use a dynamic IP address, you can leave it blank.
2. Add domain name of new domain
Yun_qi_img/30_406_6.1.jpg
Enter the newly established domain name description and enter it at will, these are just logos.
3. Select Service port
The default FTP port is 21, you can select a different port, but you need to notify visitors.
Yun_qi_img/30_406_7.1.jpg
4. Select a domain type
You can choose the registry if you can access more than 500 people at the same time.
Yun_qi_img/30_406_8.1.jpg
Yun_qi_img/30_406_9.1.jpg
The DNS option enables you to request a dynamic Domain name Interpretation service (30 days) in toz.com.
5. Add User
Here you can add two kinds of users, one with anonymous access, the other being the user name and password you must enter to access the FTP service. \ Anonymous Both of these users can be given different permissions.
A. Adding anonymous users
Similar to adding a domain name, right-click the user under the domain tree to select Add user or select a user under the domain tree and press Insert.
Enter the default name of the anonymous user Anonymous, Note: Serv-u automatically identifies the user named Anonymous as an anonymous user.
Yun_qi_img/30_406_10.1.jpg
Input Anonymous
Yun_qi_img/30_406_11.1.jpg
Specify accessible Directory
Yun_qi_img/30_406_12.1.jpg
Lock Directory
B. Adding a permission constraint user
Permission constraint users must enter a username and password before they can log on to the FTP server.
As with adding anonymous users, the steps are roughly the same.
Yun_qi_img/30_406_13.1.jpg
New User Movie
Yun_qi_img/30_406_14.1.jpg
Note: Here Serv-u does not have a generic "*" to represent the password
Yun_qi_img/30_406_15.1.jpg
Specify directory path
Yun_qi_img/30_406_16.1.jpg
6. Set User permissions
This article mainly describes the user's permissions, which include file permissions, directory permissions, subdirectory permissions. File permissions include read (read), write (write), append (Append), delete (delete), execute (execute).
Directory permissions include: list, create, delete (delete).
subdirectory Permissions are inherited (Inherit).
Yun_qi_img/30_406_17.1.jpg
File permissions:
READ: Gives users permission to read (download) files.
Write: Gives the user permission to write (upload) files.
Append (Append): Allows the user to append files.
Delete: gives the user permission to delete files.
Execute: Gives the user permission to execute the file. Please note: This permission is very dangerous, once open this permission, the user can upload the malicious virus file and execute the file, will cause the computer to make the incalculable break fast.
Directory Permissions:
List: Give users permission to browse the file list, if open read the county but turn off list permissions, and will not affect the user's download, as long as the user knows the detailed download path on the line.
Create: Allows a user to create a directory to create a folder.
Delete: Allows the user to delete a directory, but does not allow the deletion of non-empty directories.
Sub-directory Permissions:
Inheritance (Inherit): As with NTFS inheritance, users can access the next level of directories according to the permissions of this level of directory.
Four, advanced settings
1. Use of user groups
Like Windows 2000/nt, Serv-u has a similar user group management mechanism that requires no further redefinition of permissions for each user simply by establishing a group with the required permissions.
Assuming that the existing Movie-con, MOVIE-ADV, and Upload groups, the Movie-con organization allows users who know the detailed download path to download the file, the Movie-con group only needs to have file read and subdirectories to inherit two permissions.
Yun_qi_img/30_406_18.1.jpg
Movie-con Group with R---I (read and inherit) permissions only
The MOVIE-ADV group allows users to browse the entire FTP server to select files that need to be downloaded, and the MOVIE-ADV group requires file reads, directory listings, and subdirectories to inherit three permissions.
Yun_qi_img/30_406_19.1.jpg
MOVIE-ADV group with file read, directory list, subdirectory inheritance
Upload groups need to have upload permissions, you should give file writes, directory listings, and subdirectories to inherit three permissions.
Yun_qi_img/30_406_20.1.jpg
Only Upload groups with file uploads, directory lists, and subdirectories inheriting permissions
When a group of appropriate permissions is established, you can add a user name to the group
Yun_qi_img/30_406_21.1.jpg
Users listed in the Movie-con group Movie have their own user rights and have group permissions
2. Modify Server port
The port (bundle 0–65535) of the FTP server can be changed in the domain properties that appear after the domain is selected, and the default value is 21.
Yun_qi_img/30_406_22.1.jpg
3. Send a message to a visitor
You can send a message to a user who is accessing your FTP, such as: Hello, Welcome to login, 30 minutes later I will disconnect the server, please use the FTP to support the continuation of the download software access. And so on, the greeting messages can be received by the visitor.
Select the field, select "Windows" on the menu bar, select "Message" From the Drop-down menu, or press F2 directly, but it must be in the case of a selected domain.
Yun_qi_img/30_406_23.1.jpg
In the message window that appears, click "Broadcast Message" or press the key combination ctrl+b the message's compose window appears
Yun_qi_img/30_406_24.1.jpg
Yun_qi_img/30_406_25.1.jpg
You can also stand alone-to send a message to a visitor, select the field, and then select the activity:
Yun_qi_img/30_406_26.1.jpg
4. Block visitor IP and kick people
If you like, you can block an IP segment or an IP, the server will deny access from this IP segment or this IP.
Select the domain, select the settings for the domain, and then select IP Access.
Yun_qi_img/30_406_27.1.jpg
Prohibit access from 218.19.*.*-218.20.255.255 IP Segments
You can also kick people individually, select the activity under the domain, select the user in the user list, and choose to kick the user in the right-click menu.
Yun_qi_img/30_406_28.1.jpg
5. Set the server reply message
These replies will be displayed in an event dialog for the visitor's FTP download software.
Yun_qi_img/30_406_29.1.jpg
6. Limit the upload download rate of visitors
Too much user access has robbed you of bandwidth, even browsing the web has become as slow as a turtle, you need to limit the rate of upload and download visitors.
Select the user you want to restrict, and you can specify the user's speed at the maximum upload/download speed in the general:
Yun_qi_img/30_406_30.1.jpg
7. Set advanced settings for the entire server
You can set advanced settings for the entire server and select settings under the server name (default is local server):
Yun_qi_img/30_406_31.1.jpg
? General settings:
o Maximum speed: Specifies the maximum access speed for the server.
o Maximum number of users: Specifies the number of visitors allowed by the server at the same time.
o File/directory only lowercase letters are allowed: Specifies whether all files and directories use only small letter.
o Disable the override schedule: Ignore normal methods used by the customer to bypass task timeout.
O Intercept "ftp_bounce" attacks and FXP: Only active mode is allowed to transfer to client IP, and direct server to server transfer is also prohibited.
o intercept connection over [] second [] minute: Automatic interception attempts to log in users, generally set to 3 times.
? SSL Certificate
o Specifies the use of SSL connections, which are applicable to advanced users.
? directory caching
o Specify a large number of directory caches and monitor cache usage.
? Advanced
O Server:
Encrypted password: Store the password in the encrypted form.
Enable security: Force Security, prohibit anyone from doing anything on the server.
Packet timeout: timeout for packet.
Directory list masks: UNIX-style access masks are used for directory listings.
PASV Port usage: limits the port number of PASV, which is locked between 1023–65535 by default.
o File Upload:
Allow read-only access is denied: The upload file is accessed first with no permissions, such as a read-only access if it fails.
No access allowed: No one is allowed to access files being uploaded.
Allow full access: Allow other users to access files that are being uploaded.
Adaptive timeout: During upload, the server automatically adapts to the time out of the upload.
Osockets:
Online out-of-bounds data: interprets OOB packets into a regular TCP stream.
Send a connection signal: The timed send signal confirms that the connection is not disconnected.
Disable the Nagle algorithm: Do not wait for a signal until the next packet is sent.
Send buffer: Specifies the size of the buffer to send. Leave blank to call the stack automatically.
Receive buffer: Specifies the buffer size to receive small. Leave blank to call the stack automatically.
o File Download:
Allow full access: Allow other clients or processes to fully access files that are being downloaded.
Allow Read access: Only allow other users or processes to access files that are being downloaded in read-only mode.
8. Tips (Tips)
1. For each option in the Serv-u, the status bar in the lower-left corner displays the details of the option, providing the user with sufficient setup information when setting.
2. When setting the domain need to note that the domain must be set up correctly, you can set to an IP or a domain, visitors will be based on the domain or to access, if the domain name settings error, the visitor will receive no access, such as messages.
V. Access to the sample example:
Information of partial FTP access software when accessing Serv-u
Internet Explorer
Open Internet Explorer, enter your local FTP address, and enter the default local IP 127.0.0.1
Yun_qi_img/30_406_32.1.jpg
The status bar for Internet Explorer displays this information:
Users: Anonymous
Area: Internet
Download file: Select the file you want, select the file in the menu bar, select Copy to folder or right-click the file you want to download, and choose Copy to Folder in the right-click menu.
The status bar for Internet Explorer displays this information:
Users: Anonymous
Area: Internet
Download file: Select the file you want, select the file in the menu bar, select Copy to folder or right-click the file you want to download, and choose Copy to Folder in the right-click menu.
Yun_qi_img/30_406_33.1.jpg
Do not select any files, and then click on the menu bar file, select login can use other user identity landing FTP server.
Yun_qi_img/30_406_34.1.jpg
Yun_qi_img/30_406_35.1.jpg
Yun_qi_img/30_406_36.1.jpg
Cute FTP
Yun_qi_img/30_406_37.1.jpg
Yun_qi_img/30_406_38.1.jpg
Vi. Frequently Asked Questions
1. Why does the prompt not start when I start serv-u?
A: When Serv-u starts, users should log in as the user of the software installation, that is, using power User installation It is best to start serv-u with power User or above.
You also need to be aware at startup that the disk space is sufficient and that the serv-u cannot be started when the system memory may be severely low on your memory.
Is there a local server in the 2.serv-u, can I build one more similar server?
Answer: Yes. However, you need to be aware of port settings to avoid port conflicts.
3. I deleted the domain, is there any way to restore it?
A: In the Serv-u installation directory has a Servudaemon.ini file, which stores the Serv-u registration information and domain settings information, pay attention to backup can avoid mistakenly deleted domain.
4. Why do I have an error reading the folder when I access my FTP via 127.0.0.1, please confirm that you have access rights error prompts?
A: If you put the accessed files under an NTFS disk partition, you also need to give Everyon access to NTFS.
5. I have already set up the user's main path, why still can't access?
A: If you do not give access to the user in the directory access, even if you specify the user's home directory will also be the same can not be asked, you must set up this right.
6. What does the upload/download ratio mean?
A: This ratio refers to the ratio allocation between uploading and downloading when the visitor is uploading and downloading at the same time. For example, if the ratio is 1/2, visitors can also download a thread using two threads.
7. I can access, but others can not visit, what's going on?
A: Here are a few possible, first, your firewall to the FTP port stopped, such as the Norton firewall is only allowed 21 outbound and prohibit the pit stop.
Second, if the visitor is using the domain name to access you, you need to ensure that the domain name does have access to you.
Third, if you are in the intranet, you also need to set up port mapping on your upper-level export host or network device.
Four, the other party's access mode is correct, if it is the other side input error and lead to access errors ...
How do I use the disk quota limit in 8.serv-u?
A: This quota limit does not require special settings, this feature is used to restrict visitor disk quotas, if your disk is too small, the system has taken up a lot of disk space, if too many visitors, it will take up a lot of disk space, this need to limit the visitors, disk quota limit is the role of this.
9. I changed the Serv-u FTP port, how do people need to visit me?
A: You need to use the "ftp://Yourip: Port" format to access.
10. I use proxy server to surf the Internet, can others access me?
A: You can set the port mapping on the proxy server and map the port to your machine.
Current 1/2 page
12 Next read the full text