FTP Access Permissions
Each gwuser and gwgroup defined in the gwuser database owns a set of ftp
access permissions. The set can be empty or it can contain a combination
of the permissions described below.
When a ftp request is made to the firewall and authentication is required
(see FTPROXY ), the two sets of ftp access
permissions -the set defined for the current gwuser and the set defined
for the gwgroup which the gwuser belong - are merged and the union set
is used to determine whether the connection is to be allowed or not.
None
No ftp access permission is given to this gwuser or gwgroup.
PRO_FTP
Allows ftp accesses that are initiated from a protected network for
this gwuser or gwgroup. The access will be allowed if the user passes
the gwuser password authentication.
UNPRO_FTP
Allows ftp accesses that are initiated from an unprotected network
for this gwuser or gwgroup. The access will be allowed only if the
user passes a strong user authentication.
GET_FTP
Allows the transfer of files from an unprotected network to a protected
network. The 'GET' in the GET_FTP name is with respect to a
user performing ftp from a protected network (A 'GET' in this case will
be from an unprotected network to a protected one).
PUT_FTP
Allows the transfer of files from a protected network to an unprotected
network. The 'PUT' in the PUT_FTP name is with respect to a
user performing ftp from a protected network (A 'PUT' in this case will
be from a protected network to an unprotected one).
DEL_FTP
Allows the deletion of files during an ftp session.