FTP engine

Configuration Variable Data Type Description
FTP over HTTP
proxy.config.ftp.data_ connection_mode INT

Default: 1

Specifies the FTP connection mode:

  • 1 = PASV then PORT
  • 2 = PORT only
  • 3 = PASV only
proxy.config.ftp.control_ connection_timeout INT

Default: 300

Specifies how long Content Gateway waits for a response from the FTP server.

proxy.config.ftp.rc_to_switch_ to_PORT STRING

Default: NULL

Specifies the response codes for which Content Gateway automatically fails over to the PORT command when PASV fails if the configuration variable proxy.config. ftp.data_connection_mode is set to 1.

This variable is used for FTP requests from HTTP clients only.

FTP Proxy
proxy.config.ftp.ftp_enabled INT

Default: 0

Enables (1) or disables (0) processing of FTP requests from FTP clients.

proxy.config.ftp.logging_ enabled INT

Default: 1

Enables (1) or disables (0) logging of FTP transactions.

proxy.config.ftp.proxy_server_ port INT

Default: 2121

Specifies the port used for FTP connections.

proxy.config.ftp.open_lisn_ port_mode INT

Default: 1

Specifies how FTP opens a listening port for a data transfer:

  • 1 = The operating system chooses an available port. Content Gateway sends 0 and retrieves the new port number if the listen succeeds.
  • 2 = The listening port is determined by the range of ports specified by the Content Gateway variables proxy. config.ftp.min_lisn_port and proxy. config.ftp.max_lisn_port, described below.
proxy.config.ftp.min_lisn_port INT

Default: 32768

Specifies the lowest port in the range of listening ports used by Content Gateway for data connections when the FTP client sends a PASV or Content Gateway sends a PORT to the FTP server.

proxy.config.ftp.max_lisn_port INT

Default: 65535

Specifies the highest port in the range of listening ports used by Content Gateway for data connections when the FTP client sends a PASV or Content Gateway sends a PORT to the FTP server.

proxy.config.ftp.server_data_ default_pasv INT

Default: 1

Specifies the default method used to set up server side data connections:

  • 1 = Content Gateway sends a PASV to the FTP server and lets the FTP server open a listening port.
  • 0 = Content Gateway tries PORT first (sets up a listening port on the proxy side of the connection).
proxy.config.ftp.different_ client_port_ip_allowed INT

Default: 0

When enabled (1), Content Gateway can connect to a machine other than the one on which the FTP client is running to establish a data connection.

The FTP client uses PORT to set up a listening port on its side and allows Content Gateway to connect to that port to establish the data connection (used to transfer files). When setting up the listening port, an FTP client specifies the IP address and port number for the listening port. If this variable is set to 0 (zero), Content Gateway cannot connect to the FTP client if the IP address sent by the client is different from the IP address of the machine running the FTP client.

proxy.config.ftp.try_pasv_times INT

Default: 1024

Specifies the number of times Content Gateway can try to open a listening port when the FTP client sends a PASV.

proxy.config.ftp.try_port_times INT

Default: 1024

Specifies the maximum number of times Content Gateway can try to open a listening port when sending a PORT to the FTP server.

proxy.config.ftp.try_server_ctrl_ connect_times INT

Default: 6

Specifies the maximum number of times Content Gateway can try to connect to the FTP server’s control listening port.

proxy.config.ftp.try_server_ data_connect_times INT

Default: 3

Specifies the maximum number of times Content Gateway can try to connect to the FTP server’s data listening port when it sends a PASV to the FTP server and gets the IP/listening port information.

proxy.config.ftp.try_client_ data_connect_times INT

Default: 3

Specifies the maximum number of times Content Gateway can try to connect to the FTP client’s data listening port when the FTP client sends a PORT with the IP/ listening port information.

proxy.config.ftp.client_ctrl_no_ activity_timeout INT

Default: 900

Specifies the inactivity timeout, in seconds, for the FTP client control connection.

proxy.config.ftp.client_ctrl_ active_timeout INT

Default: 14400

Specifies the active timeout, in seconds, for the FTP client control connection.

proxy.config.ftp.server_ctrl_no_ activity_timeout INT

Default: 120

Specifies the inactivity timeout, in seconds, for the FTP server control connection.

proxy.config.ftp.server_ctrl_ active_timeout INT

Default: 14400

Specifies the active timeout, in seconds, for the FTP server control connection.

proxy.config.ftp.client_data_no_ activity_timeout INT

Default: 120

Specifies the maximum time, in seconds, that a client FTP data transfer connection can be idle before it is aborted.

proxy.config.ftp.client_data_ active_timeout INT

Default: 14400

Specifies the maximum time, in seconds, of an FTP data transfer connection from a client.

proxy.config.ftp.server_data_ no_activity_timeout INT

Default: 120

Specifies the maximum time, in seconds, that a server FTP data transfer connection can be idle before it is aborted.

proxy.config.ftp.server_data_ active_timeout INT

Default: 14400

Specifies the maximum time, in seconds, of an FTP data transfer connection from a server.

proxy.config.ftp.pasv_accept_ timeout INT

Default: 120

Specifies the timeout value for a listening data port in Content Gateway (for PASV, the client data connection).

proxy.config.ftp.port_accept_ timeout INT

Default: 120

Specifies the timeout value for a listening data port in Content Gateway (for PORT, the server data connection).

proxy.config.ftp.share_ftp_ server_ctrl_enabled INT

Default: 1

Enables (1) or disables (0) sharing the server control connections among multiple anonymous FTP clients.

proxy.config.ftp.share_only_ after_session_end INT

Default: 1

How an FTP server control connection is shared between different FTP client sessions:

  • 1 = the FTP server control connection can be used by another FTP client session only when the FTP client session is complete (typically, when the FTP client sends out a QUIT command).
  • 0 = the FTP server control connection can be used by another FTP client session only if the FTP client session is not actively using the FTP server connection: for example, during an idle session.
proxy.config.ftp.server_ctrl_ keep_alive_no_activity_timeout INT The timeout value when the FTP server control connection is not used by any FTP clients.
proxy.config.ftp.reverse_ftp_ enabled INT

Default: 0

Not supported.

proxy.config.ftp.data_source_ port_20_enabled INT

Default: 0

When enabled (1), bind to source port 20 for outgoing data transfer connections to Active mode FTP clients.