42 CHAPTER 3: SYSTEM MANAGEMENT
After a client originates a control connection to a server by using the port
command and uses a randomly assigned FTP port to establish the control link with
port 21 on the server, the link will be in place until there is no data waiting for
transmission. The server uses port 20 to establish data link with the client for data
transmission.
The 3Com Router can provide you with the FTP server service. That is, the router
works as a TFTP server, and a subscriber can run the FTP client application to log in
the router for accessing the files on the router.
Before using FTP, you should purchase and install a FTP client application, as the
3Com Router is not supplied with this software.
Prepare for using the FTP server
1 Set an authentication method on the FTP server
This step can be omitted. AAA defaults to local authentication without
accounting.
The authorization of the FTP server is provided for the top level working directory
of FTP subscribers. Only the subscribers that have passed authentication and
authorization can obtain the service provided by the FTP server. The 3Com Router
authenticates and authorizes FTP subscribers through an AAA server. If no AAA is
configured, the local user authentication is adopted by default.
When using AAA, the router cannot perform local accounting. Therefore, when
using local authentication, you need to open the accounting option switch to
disable the accounting function.
Perform the following configuration in system view.
Table 16 Set an authentication mode for an FTP server
2 Add an FTP-authorized user name and the password
Perform the following configuration in system view.
Table 17 Add an FTP-authorized user name and the password
For the details of the command, refer to the AAA and RADIUS Configuration
contained in the Security section of this manual.
3 Enable the FTP service
The FTP service can be enabled after configuring the authentication and
authorization on the FTP server. The FTP server supports multi-user access. A
Operation Command
Enable AAA aaa-enable
Enable accounting switch aaa accounting-scheme optional
Adopt local authentication on PPP
connections
aaa authentication-scheme login
default local
Operation Command
Add an FTP-authorized user name
and the authentication password
Local-user username password { 0 | 7 }
password service-type ftp password
{simple | cipher } password
Delete the FTP user undo user username