Advanced IIS MMC Configurations

In addition to the settings required to create or configure an FTP site, you can set other properties in the MMC that affect the way that a given FTP site interacts with the user or the host.

Connections

IIS provides automated management of connections for a given FTP based on a connection timeout and a maximum number of connections that will be supported by the server. The connection timeout property for a given FTP site determines the amount of time that can pass when a user is disconnected from the site due to inactivity. If the time period for the connection timeout property elapses from the last request a user makes to the FTP site, the user will be automatically disconnected and will have to reauthenticate to the FTP site to continue to interact with the FTP site.

To set the connection timeout or maximum number of connections for a given FTP site, right-click the FTP Site node of the MMC, and then choose Properties. In the Properties window for the selected FTP site, the FTP Site tab is open by default. About halfway down is FTP Site Connections. The maximum number of FTP site connections can be set here. You can also specify a maximum amount of time a user is allowed to maintain a connection to the server. After the value is changed, click OK or Apply to set the change.

Directory Security-IP Address Restrictions

IIS supports IP address-based access control for the FTP Sites node, a given FTP site, or a virtual directory. Users who have a given IP address may be excluded or exclusively provided access to a given FTP site or virtual directory.

Here's how to set IP address restrictions for the FTP Sites node, an FTP site, or a virtual directory:

  1. Right-click the respective node in the left pane of the MMC, and select Properties.

  2. In the Properties window for the selected FTP site, choose the Directory Security tab. You'll see a list box labeled Except Those Listed Below, which lists the exceptions to the exclusive options identified as Granted Access and Denied Access.

  3. If you select Granted Access, the list box shows the IP addresses that are not allowed access to the FTP site. If you select Denied Access, the list box shows the IP addresses that are granted access.

  4. If you want to exclude all users except for a few with a given IP address or subnet, choose the Denied Access option and enter the IP address or subnet for those users who should be allowed into the FTP site.

  5. If you want to allow all users except for a few with a given IP address or subnet, choose the Granted Access option and enter the IP addresses or subnets for those users who should be denied access.

  6. After you make your selection, click OK or Apply to set the property setting.

Directory Listing Style-MS-DOS or UNIX

IIS allows a server to act like a UNIX server FTP site or a DOS server site-but only in how the files are listed in the server directory. The UNIX mode causes the file-listing format to look like the style of a UNIX server listing. The MS-DOS mode causes IIS to list files as though the dir command had been called in a command window on a Windows operating system.

Here's how to set the directory listing style for the FTP Sites node or a given FTP site:

  1. Right-click the respective node in the left pane of the MMC, and choose Properties.

  2. In the Properties window that opens for the selected node, choose the Home Directory tab.

  3. Near the bottom of the tab under Directory Listing Style are two options called UNIX and MS-DOS. To set the desired style for the FTP node, select the respective option for the desired style and click the OK or Apply button to set the new property.

Messages

Messages that are presented to the user at the login or exit of the FTP site may be set for a given FTP site or the FTP Sites node. To set the messages presented for the FTP Sites node or a given FTP site, right-click the respective node in the left pane of the MMC and choose Properties. In the Properties window, choose the Messages tab, as shown in Figure 3-12.

click to expand
Figure 3-12: Messages tab of the Properties window for an FTP site

The following messages may be set:

  • Banner Text message displayed when a user opens the FTP site

  • Welcome Text message displayed after a user successfully authenticates to the FTP site

  • Exit Text message displayed when a user exits the FTP site

  • Maximum Connections Text message displayed when a user attempts to open the FTP site and access is denied because the maximum connections have been met

Refer to Figure 3-13 for a sample dialog box showing an FTP server that is configured with the messages set in Figure 3-12.

click to expand
Figure 3-13: Sample dialog with an FTP Server illustrating the messages presented to a user

Logging Configuration

IIS maintains logs of FTP events and interactions with an FTP server for a given user. A single log is generated for each FTP site by default. IIS enables an administrator to choose to log or not to log, the log style, the file location or database for the log, and the data included in the log. Please see Chapter 11 for more information about IIS logging.

Here's how to configure the logging for the FTP Sites node or a given FTP site:

  1. Right-click the respective node in the left pane of the MMC, and choose Properties.

  2. In the Properties window, choose the FTP Site tab.

  3. At the bottom of the tab, as shown in Figure 3-14, you can check the Enable Logging checkbox. The Active Log Format drop-down list determines whether the log is written to a database table or text file format.

    click to expand
    Figure 3-14: FTP Site tab for FTP Site Properties window




IIS 6(c) The Complete Reference
IIS 6: The Complete Reference
ISBN: 0072224959
EAN: 2147483647
Year: 2005
Pages: 193

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net