FTP Services for ClearPath MCP

TELNET Services

Interactive FTP

An interactive FTP utility program provides a command interface to FTP that is similar to the command interface provided on UNIX systems. The FTP utility enables you to exchange complete files between compatible network nodes and to display lists of files at remote hosts. The FTP utility also enables you to specify that a file format is to be converted between the format used by enterprise server applications and the format used by applications on remote hosts. This conversion is made while the file is being transferred.

Anonymous FTP

You can use FTP to manage an Anonymous FTP archive. MAKEUSER recognizes a new reserved remote usercode named *ANONYMOUSFTP. If you configure this remote usercode, anonymous access to FTP is permitted. Anonymous users are restricted to READONLY access to the files maintained in the anonymous FTP archive.

FTP Configuration Files

Site administrators and end users can store information relating to the operation of FTP in configuration files. This capability allows configuration information to be maintained over a restart of FTP.

FTP supports two classes of configuration file:

Remote server configuration

FTP can transfer an FTP/STARTUP to the remote host to, be processed by the server, to change the configuration of the server before transferring the next file.

Internationalization

FTP supports translation between 8-bit character sets other than EBCDIC and ASCII in order to more effectively address the needs of clients in environments where such character sets are used. For example, if you have file data encoded in the extended EBCDIC character set Latin1EBCDIC, you can request that the data be translated into the corresponding ASCII-based character set Latin1ISO before it is transmitted to a remote system. Similarly, if you know that an incoming file transfer is encoded in the LatinCyrillicISO character set, you can request that the data be translated into the LatinCyrillicEBC character set before it is stored on disk. FTP is able to perform any translation that your system supports.

Secure FTP with SSL

FTP supports both implicit and explicit Secure Socket Layer (SSL) security.

Implicit SSL protects both control and data connections.

Explicit SSL enables SSL to be dynamically negotiated on the control and data connections so that only the sensitive portions of an FTP session are secured.

FTP Services for ClearPath MCP requires the use of ClearPath MCP Secure Transport and Security Center to provide the SSL functionality.

Secure FTP with SSH

FTP supports inbound and outbound connections over SSH (Secure Shell). See Secure Shell (SSH) for ClearPath MCP in Section 3 of this document for more information.

Server Directories

The FTP server supports client commands to traverse a directory hierarchy and to maintain a current working directory. If you issue commands from your FTP client that are related to file or directory management, they are interpreted in the context of this current working directory.

Support for Passive-Mode Data Transfer

Normally, the FTP connection used for data transfer is initiated from the server to the client. Sometimes this process can cause problems at sites that use firewalls. The alternative is for the data connection to be initiated from the client to the server, which is called passive mode. The FTP Interactive and Batch Clients now support the negotiation of passive mode through the DATA_PORT_CONNECTION_MODE command.

Support for Specification of Source IP Address

Some systems have more than one IP address. Each IP address represents a separate interface to the network. These systems are called multihomed. When an application, such as FTP, requests a connection to a remote system, the networking software normally selects which local IP address to use. Sometimes, however, it is useful—for testing, load leveling, and so on—for an application to be able to request that the networking software use a specific local IP address. FTP provides a way for you to specify the local IP address to be used for network connections.

Support for WFL command batch files

The FTP Custom SITE command allows the administrator of a site to create a batch file of Work Flow Language (WFL) commands on the host. Remote clients use the QUOTE command to process the batch file and then execute the WFL commands in the batch file. You can use this command to manipulate files copied to the host with the permissions granted to the FTP user.

Increased station connections (up to 16,000, depending on hardware)

Flexible and predictable station naming

Internationalization, including 8- and 16-bit coded character set mapping

Improved performance and throughput over DSS TELNET

Improved fault tolerance and recovery over DSS TELNET

Configurable output editing for printer connections

Support for secure sessions over SSL

LOG, a command that provides a method to control the types of messages sent to the SUMLOG.

SECURITY ENCRYPT, a command that uses Kerberos to provide server-to-client and client-to-server data encryption capability.

Network Virtual Terminal (NVT) in line mode only.

VT100 in full-screen mode or line mode.

IBM 3270 in full-screen mode or line mode. Full-screen mode requires the MTE2SUPPORT library from the Core Network Services (CNS) product.

T27 in full-screen mode.

DEBUG IPADDRESS, a command that adds a mechanism to perform tracing by IP ADDRESS. It also expands single-session tracing to multiple session tracing.

STATION_NAME, an enhancement to this command adds a mechanism for the FUNCTION to request a TELNET connection to be terminated.

Centralized control of coded character set mapping by the MCP host TELNET server for TELNET clients.

TELNET clients using CCSs without standard mappings to the MCP system default character set can specify mapping to an optional host character set for the TELNET session.