PDA

View Full Version : Install probs


en3rmax
07-06-2006, 09:22 AM
Hi there i'm trying ioFTPD for the first time i tend to use servu but i hear good things about ioFTPD, i just cant seem to get it running

ive read the docs but still stuck

i'm not sure how to setup the default.vfs my ftp server is on d:\Ftp i have forwarded the ports in my router but no joy it just wont run

this is my ini

[Threads]
Process_Priority = NORMAL # Suggested process base priority (Idle/Normal/High/Realtime)
Io_Threads = 2 # Number of io threads
Worker_Threads = 1 # Number of worker threads
Worker_Fibers = 50 # Initial number of fibers
Encryption_Threads = 2 # Number of encryption threads


[File]
MessageCache_Size = 1000 # Amount of message files to cache
DirectoryCache_Size = 1000 # Amount of directories to cache per cache bucket (8 buckets)
Device_Concurrency = 5 # Maximum simultanous io operations per device
Upload_PreAllocation = 0 #


[Locations]
User_Id_Table = ..\etc\UserIdTable
Group_Id_Table = ..\etc\GroupIdTable
Hosts_Rules = ..\etc\Hosts.Rules

User_Files = ..\users
Group_Files = ..\groups
Log_Files = ..\logs
Cache_Files = ..\cache

Default_Vfs = ..\etc\default.vfs
Environment = ..\etc\ioftpd.env



##################### DEVICES ########################
##
#
# [Device Name]
# Host = <Host/IP> # External host. Address shown to clients. (0.0.0.0 = any local ip)
# Ports = <Begin-End> # Ports to use for data transfers. May contain comma seperated list of port ranges.
# Random = <True/False> # Use ports in random order
# Bind = <Host/IP> # Internal host. If specified, connections are bound to this address instead of HOST.
#
# Global_Inbound_Bandwidth = <kB/s> # Limit overall inbound speeds
# Global_Outbound_Bandwidth = <kB/s> # Limit overall outbound speeds
# Client_Inbound_Bandwidth = <kB/s> # Limit client inbound speeds
# Client_Outbound_Bandwidth = <kB/s> # Limit client outbound speeds
#


[Any]
Host = xx.xx.xxx.x
Ports = 1024-2048
Random = True
;Global_Inbound_Bandwidth = 10000
;Global_Outbound_Bandwidth = 10000
;Client_Inbound_Bandwidth = 100 [*registered version*]
;Client_Outbound_Bandwidth = 50 [*registered version*]
;Bind =



################## END OF DEVICES ####################



##################### SERVICES #######################

[FTP_Service]
Type = FTP
Device_Name = Any
Port = 9999
Description = My FTP Service
User_Limit = 10
Allowed_Users = *
Messages = ..\text\ftp

### Encryption ###
#
Require_Encrypted_Auth = !*
Require_Encrypted_Data = !*
#Certificate_Name = 192.168.1.10
Explicit_Encryption = True
Encryption_Protocol = SSL3
Min_Cipher_Strength = 128
Max_Cipher_Strength = 256

### IDNT command handler ###
#
Get_External_Ident = True

### Traffic Balancing ###
#
;Data_Devices =
;Random_Devices = True


[Telnet_Service]
Type = Telnet
Device_Name = Any
Port = 10001
Description = My Telnet Service
User_Limit = 10
Allowed_Users = T !*
Messages = ..\text\telnet



[HTTP_Service]
Type = HTTP
Device_Name = Any
Port = 10000
Description = My HTTP Service
User_Limit = 50
Allowed_Users = H !*
Messages = d:\ioFTPD\text\http
;Certificate_Name = 192.168.1.10
;Explicit_Encryption = False
;Encryption_Protocol = SSL3
;Min_Cipher_Strength = 128
;Max_Cipher_Strength = 384


################## END OF SERVICES ###################



[Network]
Active_Services = FTP_Service Telnet_Service HTTP_Service

Ident_Timeout = 5 # Set ident timeout (seconds)
Hostname_Cache_Duration = 1800 # Seconds cached hostname is valid
Ident_Cache_Duration = 120 # Seconds cached ident is valid
Connections_To_Ban = 1000000 #
Ban_Counter_Reset_Interval = 30 #
Temporary_Ban_Duration = 1200 # Seconds host remains banned
Internal_Transfer_Buffer = 65536 # Internal transfer buffer size
Scheduler_Update_Speed = NORMAL # Socket scheduler update speed (HIGH/NORMAL/LOW/DISABLED)



[Ftp]
Idle_TimeOut = 120
Login_Attempts = 3
Login_TimeOut = 15
Socket_Send_Buffer = 4096
Socket_Recv_Buffer = 1024
DataSocket_Nagle = False
Transfer_Buffer = 65536 # For maximum scalability, set Transfer & DataSocket buffers to to low values
DataSocket_Send_Buffer = 32864
DataSocket_Recv_Buffer = 32864


[Telnet]
Idle_TimeOut = 120
Login_TimeOut = 15
Socket_Send_Buffer = 4096
Socket_Recv_Buffer = 1024


[Http]
Keep_Alive = 180
Max_Memory_Content = 1024000 # Maximum bytes of GET/PUT/POST/HEAD content to cache in memory
;Socket_Send_Buffer = 16384
;Socket_Recv_Buffer = 16384


[Sections]
## Maximum of 10 different credit sections ##
#
# <alias> = <credit section #> <path>
# <alias> = <credit section #> <stats section #> <path>
#

Home = 0 1 /home/*
Default = 0 *


[VFS]
###
# Default attributes for files & directories
#
# Required Parameters: <filemode> <owner uid>:<owner gid>
#

Default_Directory_Attributes = 755 0:0
Default_File_Attributes = 644 0:0


###
# Command specific rules
#
Modify_Stats_On_Delete = False


###
# Detailed permissions for directories
#
# priviledge = <virtual path> <rights>
#
Upload = * *
Resume = * *
Download = * *
MakeDir = * *
RemoveOwnDir = * *
RemoveDir = * 1VM
Rename = * 1VM
RenameOwn = * *
Overwrite = * 1VM
Delete = * 1VM
DeleteOwn = * *
NoStats = * =lSpeed !*


[Reset]
WeeklyReset = Sunday
MonthlyReset = 1st


[Scheduler]
###
# Scheduler
#
# Event = <minutes> <hours> <day of month> <day of week> Command
#
# Internal Commands:
#
# &Reset : Resets upload/download counters
# &Service_Update : Reloads devices and Restarts services, if bind ip of service has changed
#
Reset = 0 0 * * &Reset
Service_Update = 10,30,50 * * * &Service_Update





[Events]
;OnUploadError =
;OnUploadComplete = EXEC d:\test.bat
;OnUploadComplete = TCL ..\scripts\test2.itcl
;OnDownloadError =
;OnDownloadComplete =
;OnResume =
;OnUpload =
;OnNewDir =
;OnDelDir =
;OnLogIn =
;OnServerStart =
;OnServerStop =
;OnServiceStart =
;OnServiceStop =




[Modules]
;MessageVariableModule = ..\modules\cookie.dll
;UserModule = ..\modules\networkuser.dll
;GroupModule = ..\modules\networkgroup.dll
;EventModule = ..\modules\eventmodule.dll




[FTP_Pre-Command_Events]
;list =
;stor =
;mkd =

[FTP_Post-Command_Events]
;mkd =
;rmd =
;stor =
;dele =


[FTP_Custom_Commands]
## SITE <trigger> <parameters>
#
# trigger = !file # Show file
# trigger = @string # Alias
# trigger = EXEC script.exe # Execute file.exe
# trigger = %EXEC script.exe # Execute file.exe (translate cookies)
# trigger = TCL script.itcl # Execute file.itcl
#
## Examples
# welcome = !..\text\ftp\welcome.msg
# rehash = @config rehash
# exec = EXEC ..\scripts\exec.bat
# myinfo = %TCL ..\scripts\whoami.itcl %[$user]
# cat = TCL ..\scripts\showfile.itcl
#
TCL = TCL ..\scripts\test2.itcl
#TCL = TCL ..\scripts\bottalk.itcl
BAT = EXEC d:\test.bat
WHO = TCL ..\scripts\BlzBot.itcl


[Telnet_Binaries]
hello = EXEC d:\ioFTPD\site\bin\hello.bat



[FTP_Command_Permissions]


[FTP_SITE_Permissions]
## SITE <cmd> ##
#
# 'M' - MASTER
# 'V' - VFS ADMINISTRATOR
# 'G' - GROUP ADMIN RIGHTS
# 'F' - FXP DENIED (DOWNLOAD)
# 'f' - FXP DENIED (UPLOAD)
# 'L' - SKIP USER LIMIT PER SERVICE
# 'A' - ANONYMOUS
#
adduser = 1GM
deluser = 1GM
renuser = 1M
gadduser = 1GM
grpadd = 1M
grpdel = 1M
grpren = 1M
chgrp = 1M
kick = 1GM
kill = 1M
addip = 1GM
delip = 1GM
passwd = !A *
stats = !A *
tagline = !A *
swho = 1MG
chmod = !A *
chown = MV
chattr = MV
config = M
uinfo = 1GM
ginfo = 1GM
users = 1GM
groups = 1GM
shutdown = M
bans = 1M



[Telnet_Command_Permissions]
adduser = 1GM
deluser = 1GM
renuser = 1M
gadduser = 1GM
grpadd = 1M
grpdel = 1M
grpren = 1M
kick = 1GM
kill = 1M
addip = 1GM
delip = 1GM
chmod = !A *
chown = MV
chattr = MV
list = *
cd = *
passwd = *
stats = *
tagline = *
swho = 1MG
chgrp = 1M
config = M
uinfo = 1GM
ginfo = 1GM
users = 1GM
groups = 1GM
shutdown = M
bans = 1M




[Telnet_Binary_Permissions]


[Change_Permissions]
admingroup = 1M
credits = 1M
flags = 1M
groupdescription = 1M
groupslots = 1M
groupvfsfile = M
homedir = 1GM
logins = 1M
passwd = 1GM
ratio = 1GM
stats = M
tagline = 1GM
showjobs = M
speedlimit = 1M
vfsfile = M


[Http_Permissions]
users = 1GM
uinfo = 1GM
addip = 1GM
delip = 1GM
config = M


thx in advance guys

InFiNi
07-06-2006, 10:15 AM
In first place you don't need to set up default.vfs. On the first time you have to connect with admin user (ioFTPD - user and pass) so you have to set up up admin.vfs

---- admin.vfs begin ----
"d:\Ftp" /
---- admin.vfs end ----

Second thing is Hosts.Rules (be carefull how you setup rules "POLICY DENY OR ACCEPT")!

And third thing (most important) you have to do is ... watch log dir for errors (...\ioFTPD\logs) and read them!

en3rmax
07-06-2006, 10:35 AM
this is really weird still no joy InFiNi

could i see an example of admin.vfs & Hosts.Rules

thx InFiNi

en3rmax
07-06-2006, 02:16 PM
been trying it again still no luck i have changed some of the settings

[Any]
Host = ftp.serveftp.com
Ports = 1024-2048
Blind = xxx.xxx.xx.x
Random = True
;Global_Inbound_Bandwidth = 10000
;Global_Outbound_Bandwidth = 10000
;Client_Inbound_Bandwidth = 100 [*registered version*]
;Client_Outbound_Bandwidth = 50 [*registered version*]
;Bind =


[FTP_Service]
Type = FTP
Device_Name = Any
Port = 444
Description = My FTP Service
User_Limit = 10
Allowed_Users = *
Messages = ..\text\ftp


im not sure about the admin.vfs here are my settings

"d:\Ftp" /
"c:\" /mnt/c-drive
"d:\" /mnt/d-drive
"e:\" /mnt/cdrom
"\\192.168.1.1\Work" /mnt/samba

not sure how to set this

# Default policy
#
# POLICY ACCEPT CONNECTIONS_PER_IP
# POLICY DENY
#
#POLICY ACCEPT 2
## PLEASE REMOVE LINE BELOW
POLICY DENY

# Classes
#
# CLASS CLASS_NAME TOTAL_CONNECTIONS_PER_CLASS
CLASS NORDIC 25
CLASS ADMIN -1

# Rules
#
# ACCEPT I|H IP|HOSTNAME CLASS_NAME CONNECTIONS_PER_IP
# DENY I|H IP|HOSTNAME LOG_STRING
#

ACCEPT I 192.168.1. ADMIN -1
ACCEPT I 127.0.0. ADMIN -1
ACCEPT H .fi NORDIC 2
ACCEPT H .se NORDIC 1
ACCEPT H .no NORDIC 1
DENY I 192.168. "Banned network address"
DENY I 10. "Banned network address"
DENY H .tw "Access from taiwan is prohibited"


i have forwarded ports 444 & 1024 1028 to xxx.xxx.xx.x

sorry for the grief guys im new to this and wanna change from servu

JoC
07-06-2006, 02:25 PM
change it to:
POLICY ACCEPT 2
## PLEASE REMOVE LINE BELOW
#POLICY DENY

InFiNi
07-06-2006, 04:05 PM
Hm ... :p


1) ioftpd.ini

Host = 192.168.25.6 (don't write domain if you have internal IP / behind server or router)

where did you get?
Blind = 192.168.25.6 (or did you mean Bind? and you don't need this at begining so leave ti)

[Any]
Host = 192.168.25.6
Ports = 1024-2048
Random = True
;Global_Inbound_Bandwidth = 10000
;Global_Outbound_Bandwidth = 10000
;Client_Inbound_Bandwidth = 100 # [*registered version*]
;Client_Outbound_Bandwidth = 50 # [*registered version*]
;Bind =


2) admin.vfs
at the begining just try to use root dir (no other stuff)
"d:\Ftp" /


3) Hosts.Rules (As JoC wrote)

POLICY ACCEPT 2
#POLICY DENY
#you can change nordic to ANONYMOUS
CLASS NORDIC 10
CLASS ADMIN -1

ACCEPT I 192.168.25. ADMIN -1
ACCEPT I 127.0.0. ADMIN -1
#ACCEPT H .fi NORDIC 2
#ACCEPT H .se NORDIC 1
#ACCEPT H .no NORDIC 1
#be carefull at this next line
#DENY I 192.168. "Banned network address"
#DENY I 10. "Banned network address"
#DENY H .tw "Access from taiwan is prohibited"

Afer changing this settings you have to restart ioftpd!!!


4) While you try to mount "\\192.168.1.1\Work" /mnt/samba i think you have linux for the server and firewall?
Some linux have problems if you try to connect from local IP to external (215.155.155.5) and theh be forwarded on the same machine again.
(from 192.168.25.6 -> 215.155.155.5 ->forward-> 192.168.25.6)
Just try to cennect from machine that you're running ioftpd on local IP with passive mode.
User and pass: ioFTPD
ip: 192.168.25.6 Port 444

And if you use linux you just need to forward port 444 and nothing else (hope u know how)


5) check the log dir for logs and errors and read them!!!

en3rmax
07-06-2006, 05:05 PM
thx for the info InFiNi it really helped

ive got it to connect now but as its connecting i will pause for a bit then connect, i get these errors

[R] Opening data connection IP: xx.xx.xxx.x PORT: 1229
[R] Data Socket Error: Connection timed out
[R] List Error

[R] PASV mode failed, trying PORT mode.

[R] PORT mode was successful, Please update your site profile.

when i try to send a file to my ftp i get this

[R] Data Socket Error: Connection timed out
[R] Transfer Failed!
[R] PASV

InFiNi
07-07-2006, 05:19 AM
If you try to connect local you can use active mode (passive from outside).

Did you check log folder for errors?
( 5) check the log dir for logs and errors and read them!!!)

en3rmax
07-07-2006, 07:36 AM
Hi there ive turned off use passive mode in flash and it seems to be working fine, is there an option in ioFTPD to turn off passive

i've sorted this now guys passive is working now, i forwarded more ports on the router cheers :)

cheers for the info InFiNi & JoC really appreciate it

& thx tuff for a wicked ZipScript - ioSFV