Documentation forServ-U File Server

Serv-U server settings

On the Server Limits & Settings > Settings pages, you can configure basic settings that affect performance, security, logo-in display, and network connectivity for the entire file server . To configure a setting, type the value you want in the appropriate area, and then click Save. This topic contains detailed information about the settings that you can configure.

Connection Settings

Block users who connect more than 'x' times within 'y' seconds for 'z' minutes

Also known as anti-hammering, enabling this option is a method of preventing brute force password guessing systems from using dictionary style attacks to locate a valid password for a user account. Using strong, complex passwords defeats most dictionary attacks. However, enabling this option ensures that Serv-U does not waste time processing connections from these illegitimate sources. When configuring this option, ensure that there is some room for legitimate users to correct an incorrect password before they are blocked.

When enabled, this option temporarily blocks (for the specified number of minutes) IP addresses that fail to successfully login (after the specified number of attempts within the specified number of seconds). IP addresses blocked in this way can be viewed in the appropriate IP access rules tab. A successful login resets the counter that is tracking login attempts.

Hide server information from SSH identity

After a successful SSH login, the server sends identification information to the client. Normally, this information includes the server name and version number. Enable this option to prevent the information from being provided to the client.

Default Web Client

For the MFT Server, this enables you to specify whether the Web Client, Web Client Pro, FTP Voyager JV or File Sharing should be used by all HTTP clients by default. The third, default option is to prompt the users for the client they want to use instead. This option is also available at the group and user level.

 

Custom HTTP Logo, Login Page Text & Title Settings
HTTP Login Title Text (no HTML) Enter a text-only title to appear when a HTTP client logs into the file server.
Custom Logo Path

To use your own custom logo, create a 400 x 100 pixel graphic and enter or navigate to its location. An error message will be displayed if this criteria is not met.

To reset to original Serv-U log, select <<Inherit default value>> from the drop-down menu.

HTTP Login Page Text

Enter the text to be displayed on the HTTP login page.

This text can be HTML-formatted, including links, images, and standard formatting like italics, bold, underline, alignment and more.

HTTP Client Interface Background (CSS Only)

MFT only. Enter a CSS background style for the Web Client, File Sharing and FTP Voyager JV landing page. The format is:

color url('/%CUSTOM_HTML_DIR%/images/yourimage.png') repeat-type horizontal-alignment vertical-alignment.

The %CUSTOM_HTML_DIR% must be used in conjunction with the Custom HTML settings. Custom HTML must be enabled and a Custom HTML Container Directory must be specified.

The following examples provide a reference:

  • #0b16f8 url('/%CUSTOM_HTML_DIR%/images/Header01.png') no-repeat right top
  • #FFFFFF url('/%CUSTOM_HTML_DIR%/images/MyLogoTile.png') repeat-x left top
  • red (this example uses no image)
  • url('/%CUSTOM_HTML_DIR%/images/MyHeader.png') no-repeat center top (this example uses no custom color)

 

Network settings

Auto-configure firewall through UPnP (Windows Only)

When enabled, Serv-U automatically configures the necessary port forwards in your UPnP-enabled network device (usually a router) so that the file server is accessible from outside your network. This is particularly useful in enabling PASV mode FTP data transfers.

Packet time-out

Specifies the timeout, in seconds, for a TCP packet transfer. Only very slow networks experiencing high levels of latency may need to change this value from the default 300 seconds.

PASV Port Range

Specifies the inclusive range of ports that Serv-U should use for PASV mode data transfers. Serv-U normally allows the operating system to assign it a random port number when opening a socket for a PASV mode data transfer. This attribute accommodates routers or firewalls that need to know a specific range of ports in advance by restricting the PASV port range of Serv-U to a known range. A range of 10 ports is sufficient for the busiest of file servers.

Some NAT routers work differently and may require a larger port range. If Serv-U and clients have troubles listing directories or transferring files, try increasing the port range here and on your router.

Require matching peer IP address for control and data connections To avoid the risk of FTP bounce attacks, check this box to ensure the peer address of the control connection matches that of the data connection. If they do not match, the transfer will be disallowed. If you are making server-to-server transfers you will need to leave this box unchecked.

 

Password Recovery Message

Subject

The subject line for the password recovery message.

Message

Unless using the inherited or default message, enter the message for the password recovery message to be sent to the client.

$Name will display the user name.

$Password will display the user password.

Configure SMTP

Click to configure SMTP for the server.

 

Other settings

Integration Library

For information about writing an Integration DLL or Shared Library, see the Serv-U Integration Sample DLL in the Serv-U Integration Sample DLL sub-directory. The Integration API is documented in this sample.

Ratio Free Files

Files listed by clicking the Ratio Free Files button are exempt from transfer ratio limitations on file transfers. Ratio Free Files specified at the server or domain level are inherited by all their user and group accounts.

Change Admin Password

The Serv-U Management Console can be password protected when it is launched by double-clicking on the Serv-U system tray icon. When the Management Console is running in this way, the option to change the password becomes available. By default, there is no admin password.