I am going to show you how to setup an FTP Secure (FTPS protocol) on Windows Server 2003 and have your own version of FTP server rather than default ftp in IIS.
FTPS should not be confused with the SSH File Transfer Protocol (SFTP), an incompatible secure file transfer subsystem for the Secure Shell (SSH) protocol. It is also different from Secure FTP, the practice of tunneling FTP through an SSH connection.
Please make sure you don’t have IIS FTP service enabled and running. If you have it running, please disable FTP service as we are going to use the same ports as a standard FTP
Download the latest version of FileZilla Server. At the time of writing, it was 0.9.33
Choose Standard install and proceed. This will install the Windows service for FileZilla and the GUI for administration.
After the Installation is completed, it is now to configuring the server. To start the Administration interface, Connect to 127.0.0.1 which is localhost on Port 10050 (you have given this during installation)
Setup your server as per the images. They are self explanatory.
We are going to have the FTP Secure to listen on port 21 which is the default FTP port.
Setup your own customised welcome message when the users logs in. Make sure you select to hide the message in log, because this might increase the log size.
Use * to bind all IP addresses on the local system. If your server has multiple IP addresses assigned, provide only the IP that you want to use
To have better control over security, Ban all IP addresses to connect and include only the IP address in the exclude list that want to connect. Separate the IP address with a space. Here I allowed google.com IP (209.85.229.103)
The next few settings are straight forward:
Enable logging to see who the usage and also enable deletion of older log files or else you will end up requiring huge disk space
Here you can set the download and upload speed limits if you wish to. Note that these limits are global settings, so they will take over individual user settings.
This is the main part where we configure an SSL certificate to set our server as FTPS. You can use a public certificate which you need to purchase. But for the demo purposes, I am going to use inbuilt certificate generator.
Provide your server IP address in the Common name
Go back to SSL/TLS settings and give the path to the generated certificate and a key password
And finally Autoban settings and we are done with Server Configuration.
Before you proceed to connect, make sure port 21, 990 and 3000-4000 are allowed on your firewall. This is very important.
In my next post, I will show how to setup groups and users in FileZilla Server and connect using FileZilla Client.
Hi Sujeeth, very nice tutorial! I used to to setup my FTP server. I was wondering if you still planned on posting your next tutorial on groups, users, and ftp access. I am having some trouble accessing my server. Thanks again for your hard work!
Andy
Here it is:
https://technobuff.wordpress.com/2009/10/30/setup-groups-and-users-in-filezilla-server-and-connect-with-ftpes/
Pingback: Setup groups and users in FileZilla Server and connect with ftpes « Scribblings of a TechnoBuff
Pingback: Le Blog de Jef » Bureau virtuel avec Ma Plateforme Web
This is really fantastic
send me the second part about installation and confiquration of filezilla client
Pingback: go to my pc login
Pingback: soft pc
Hi Sujeeth,
I followed every step of the tutorial above, but after all was done, I received an error saying “Invalid IP address/range/mask”. The IP address I used is that of my server.
Could you tell me what I would need to change, or where I went wrong?
Would appreciate any help! Thank you in advance.
Nikki
is it possible to setup SFTP server in Filezila
“Before you proceed to connect, make sure port 21, 990 and 3000-4000 are allowed on your firewall. This is very important.”
Also make sure the above are Port-Forwarded in your router, AND that these ports are assigned in your DSL/Cable modem. Of course, you must use dynamic DNS if piping this through your home ISP since they will change the IP periodically. Recommend another port for FTP (instead of 21, use 2121, or any other high number) since ISPs do not like you using FTP (and hackers love port 21). Turn off all firewalls (PC/server, router, modem) first when testing, then turn them back on while testing each time.
It took me many days of testing to secure my home FTP. Thanks for this excellent blog.
It’s not my first time to pay a quick visit this website,
i am visiting this website dailly and obtain fastidious data from here everyday.
Thankfulness to my father who stated to
me about this web site, this web site is in fact awesome.
Hi,
I wonder how to Install third part Certificate when deploy a ftps server by FileZilliaļ¼
Hi Sujeeth,
Thanks for wonderul post, but want to know if i can automate in shell script so that files can be transferred from Hp-Ux to Windows
Thanks
Atul
Nice job!! wonderful post with simple steps