FTPROXY
This screen displays the current configuration information for the ftp
proxy. The administrator can modify the ftp configuration on this
screen and then save the updates to the firewall. Modifications will
take effect automatically for all subsequent ftp connections.
Edit Button
Edit the config file directly rather than using this configuration
screen.
Group name which ftproxy should run under
A group defined to the Operating System running on the firewall.
ftproxy will run under this group so as to provide an additional level
of security. In most cases, this should be the default group for
new users.
Directory which ftproxy should run under
The directory for ftproxy to change to and 'chroot' to before completing
a connection so as to provide an additional level of security. In
most cases, this is the home directory for the user
which ftproxy is to assume. Do not specify '/' since that defeats
the purpose of this parameter.
User name which ftproxy should run under
A user defined to the Operating System on the firewall. ftproxy
will run under this user so as to provide an additional level of security.
The T.Rex installation default is the user 'hermes'. Do not specify
user 'root' since that defeats the purpose of this parameter.
Maximum idle time in seconds before disconnect
Number of seconds to of idle time before ftproxy closes a connection.
Require authentication for users in protected networks
Specifies whether ftp connections initiated from protected networks
are required to authenticate using gwuser passwords. Select 'No'
and all ftp requests from protected networks will be allowed without authentication.
Users will not have to have a defined gwuser username and password to run
ftp from protected networks. Select 'Yes' and gwuser usernames and
passwords will have to be defined for a user before he/she can ftp through
the firewall from a protected network.
Allow FTP from outside network
Specifies whether ftp requests from unprotected networks are allowed
through the firewall. Select 'No' and no ftp requests from unprotected
networks will be allowed, regardless of the permit/deny
rules specified. Select 'Yes' and the permit/deny
rules will be used to allow/disallow ftp requests from unprotected
networks.
Anonymous FTP server address
Specifies the IP address of the anonymous FTP server. If this
field is left blank, anonymous ftp requests from unprotected networks will
not be allowed.
Permit/Deny Rules
This is the area where new permit/deny rules can be added and existing
permit/deny rules can be modified or removed. See Working
With a Rules Panel for more information.
Permit/Deny
Select 'permit users', 'permit groups', 'deny users' or 'deny groups' from
this choice button.
Users or Groups
The gwuser usernames or groupnames to be permitted/denied by this rule.
From Address, To Address
A connection request matchingthis from address and to address will
be permitted/denied by this rule.
Taskbar Pulldown Menu
Task Buttons