F-Secure Internet Gatekeeper for Linux/Administrator’s Guide
52
7.1.1.4
FTP Proxy
FTP proxy
FTP Proxy
(ftp_service)
Click the
On
and
Off
buttons to start or stop the FTP proxy service.
Proxy port
Proxy Port
(svcport)
Specifies the port number which the proxy service uses. The standard port number is 21.
Usually, you need to specify only the port number.
To specify the port number, IP address, and interface name all together, use the following
format:
Syntax:
[A.A.A.A%EEE:PPP|A.A.A.A:PPP|%EEE:PPP|PPP]
(PPP:
Port number, A.A.A.A:
Address, EEE: Interface)
Examples:
9021, 1.2.3.4:9021, %eth0:9021, 1.2.3.4%eth0:9021
■
You can specify only one inbound port number. To listen for connections on more
than one port, use the REDIRECT setting in the iptables function of Linux.
For example, to listen for connections on both 21 and 12345, set 21 as the inbound
port number and use iptables to redirect port 12345 to port 21. In this case, use the
following command to set up iptables:
# iptables –t nat –A PREROUTING –p tcp –dport 12345 –j REDIRECT –to-port 21
After specifying the setting, save the iptables configuration:
# /etc/init.d/iptables save
Parent server
Parent Server
(parent_server_host / parent_server_port)
Specifies the host name and port number of the destination FTP server.
The standard port number is 21.
This setting is ignored in transparent mode.
Virus scanning
Do Virus Check
(virus_check)
Enables or disables virus scanning.
We recommend that you enable this setting.
What to do when a virus is detected
Action on Viruses
Delete
Delete
(action={pass,delete})
Deletes viruses. The detection event is recorded in the log and a notification is sent to the
administrator even if the virus is not deleted.
We recommend that you enable this setting.
Notify the administrator by e-mail
Notify Admin
(notify_admin)
Sends a notification to the administrator by e-mail. Specify the e-mail address, mail server,
and detection message in
Settings to notify the administrator
under “Common settings”.
To separate notifications from standard e-mails, "X-Admin-Notification-Id: [number]" is
added to the header. This also prevents the notification from being detected as a virus.
“Number” is a random number, which is set as admin_notification_id in the settings file
during the installation.