FEATURE: IP-Based Access-Control: Server Wide

- Navigate to Management -> Security -> IP Access Control-Lists - Right-click and choose "Add IP/ACL" PLEASE NOTE: All rules should be added as a DENY rule ("-" minus) sign. Entering a ALLOW rule ("+" plus) will override the default rule of "+*.*.*.*" and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

– Navigate to Management -> Security -> IP Access Control-Lists
- Right-click and choose “Add IP/ACL”
PLEASE NOTE: All rules should be added as a DENY rule (“-” minus) sign. Entering a ALLOW rule (“+” plus) will override the default rule of “+*.*.*.*” and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

Enter the IP Address to be banned. Please note that the "Refuse IP Address Access" should be chosen. PLEASE NOTE: All rules should be added as a DENY rule ("-" minus) sign. Entering a ALLOW rule ("+" plus) will override the default rule of "+*.*.*.*" and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

Enter the IP Address to be banned. Please note that the “Refuse IP Address Access” should be chosen.
PLEASE NOTE: All rules should be added as a DENY rule (“-” minus) sign. Entering a ALLOW rule (“+” plus) will override the default rule of “+*.*.*.*” and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

- Navigate to Server Monitor -> Log Watch In this example, you'll see the DENY rule being made for "-54.153.69.28" and you'll see the ftp-client disconnect and then attempt to reconnect again, only to be refused access.

– Navigate to Server Monitor -> Log Watch
In this example, you’ll see the DENY rule being made for “-54.153.69.28″ and you’ll see the ftp-client disconnect and then attempt to reconnect again, only to be refused access.

FEATURE: IP Based Access-Control for Users/Groups

- Navigate to User/Group Manager -> Edit User/Group -> Restrictions - Right-click and choose "Add IP/ACL" PLEASE NOTE: All rules should be added as a DENY rule ("-" minus) sign. Entering a ALLOW rule ("+" plus) will override the default rule of "+*.*.*.*" and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

– Navigate to User/Group Manager -> Edit User/Group -> Restrictions
- Right-click and choose “Add IP/ACL”
PLEASE NOTE: All rules should be added as a DENY rule (“-” minus) sign. Entering a ALLOW rule (“+” plus) will override the default rule of “+*.*.*.*” and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

Enter the IP Address to be banned. Please note that the "Allow IP Address Access" should be chosen, in order to restrict a user|group to a specific IP Address (aka whitelist) PLEASE NOTE: All rules should be added as a DENY rule ("-" minus) sign. Entering a ALLOW rule ("+" plus) will override the default rule of "+*.*.*.*" and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

Enter the IP Address to be banned. Please note that the “Allow IP Address Access” should be chosen, in order to restrict a user|group to a specific IP Address (aka whitelist)
PLEASE NOTE: All rules should be added as a DENY rule (“-” minus) sign. Entering a ALLOW rule (“+” plus) will override the default rule of “+*.*.*.*” and turn IP/ACL into whitelist only, where all IPs are rejected unless an ALLOW rule is created.

- Navigate to Server Monitor -> Log Watch In this example, you'll see the ftp-client from "-54.153.69.28" is denied. This is because the IP/ACL was converted to a "whitelist" with a single ALLOW rule and "+192.168.0.*" does not match the incoming ftp-client.

– Navigate to Server Monitor -> Log Watch
In this example, you’ll see the ftp-client from “-54.153.69.28″ is denied. This is because the IP/ACL was converted to a “whitelist” with a single ALLOW rule and “+192.168.0.*” does not match the incoming ftp-client.

HOWTO: Getting Started with BulletProof FTP Server

Thank you for your interest in BulletProof FTP Server.

Below is a list of HOWTO articles that have been written over the years to help customers in getting up and running with BulletProof FTP Server.
Note: Some of the screen-shots show older versions of the software. The UI hasn’t changed much between different versions, but you might find some of the buttons labeled differently than what appears.

  • Download, Install and Adding First User
  • Opening Your Firewall
  • Licensing
  • Upgrading
  • Windows System Service
  •  

    Download, Install and Adding First User

    HOWTO: Downloading BPFTP Server 2010
    http://blog.builtbp.com/2010/09/howto-downloading-bpftp-server-2010/

    HOWTO: Installing BPFTP Server 2010
    http://blog.builtbp.com/2010/09/howto-installing-bpftp-server-2010/

    HOWTO: Adding a User
    http://blog.builtbp.com/2010/09/howto-adding-a-user/

     

    Opening Your Firewall

    It’s VERY common that people think only one-port is needed for ftp (default: tcp/ip 21). However, this is not true.

    FTP requires at least two ports, one for the control-port (used to login and issue commands, default tcp/ip 21) and a data-port (default tcp/ip 30000 to 30100). One data-port is needed for every concurrent data-connection, for this reason we suggest using a range of 100 ports which will handle most needs.

    HOWTO: Windows Firewall and BPFTP Server 2011
    http://blog.builtbp.com/2011/06/windows-firewall-and-bulletproof-ftp-server/

    HOWTO: Windows Firewall
    http://blog.builtbp.com/2010/09/howto-windows-firewall/

    HOWTO: Setting up NAT/Passive/Firewall Support
    http://blog.builtbp.com/2010/09/howto-setting-up-natpassivefirewall-support/

     

    Licensing

    HOWTO: Enter Your Subscription-Code
    http://blog.builtbp.com/2013/05/howto-enter-your-subscription-code/

    HOWTO: Purchase an Upgrade to your License
    http://blog.builtbp.com/2014/02/howto-purchase-an-upgrade-to-your-license/

    HOWTO: Remove Your License-Code
    http://blog.builtbp.com/2013/05/howto-remove-your-license-code/

     

    Upgrading

    FAQ: Can I Upgrade and retain all my Users, Groups and Settings?
    http://blog.builtbp.com/2011/12/faq-can-i-upgrade-and-retail-all-my-users-groups-and-settings/

    FAQ: Where does BPFTP Server store the Users, Groups and Settings?
    http://blog.builtbp.com/2011/12/faq-where-does-bpftp-server-store-the-users-groups-and-settings/

    HOWTO: Overridding the Storage-Path for Settings, Users and Groups
    http://blog.builtbp.com/2011/10/howto-override-storage-path-for-settings-users-and-groups/

     

    Windows System Service

    HOWTO: Windows System-Service
    http://blog.builtbp.com/2011/09/howto-windows-system-service/

     

    FEATURE: “reload” command-line parameter

    This HOWTO video shows the process of executing the “reload” command at the command line to reload changes made to the USERS file.

    1) BPS currently running as a SERVICE
    2) Logging into BPS using “ftp.exe”
    3) While the ftp-client is still connected
    4) Change the “bpftpserver-users.ini” and edit the password
    5) Issue the “bpftpserver -reload” command
    6) BPS launches another instance to instruct the current instance to reload the configuration
    7) The original ftp-client is still connected
    8) Disconnect original ftp-client and try to login as old password (doesn’t work, since it was changed)
    9) Try to login as the new password, it works.

    HOWTO: Add Anonymous ftp-user to BPFTP Server

    1) Switch to "User Manager" 2) Click "Add User" 3) Enter the name for the account as "anonymous"

    1) Switch to “User Manager”
    2) Click “Add User”
    3) Enter the name for the account as “anonymous”

    1) Switch to "Login" 2) Turn OFF the requirement for a "Password" for the account...

    1) Switch to “Login”
    2) Turn OFF the requirement for a “Password” for the account…

    1) Switch to "Access" 2) Right-Click in the empty part of the window. 3) Click Add.

    1) Switch to “Access”
    2) Right-Click in the empty part of the window.
    3) Click Add.

    1) Choose the directory you want the anonymous user to access. Recommend: c:\ftp\anonymous

    1) Choose the directory you want the anonymous user to access.
    Recommend: c:\ftp\anonymous

    1) It's recommended that the anonymous user have the following rights to only allow the "uploading" of files to your ftp-server. TIP: This will keep people from using your ftp-server as a "dump-site" for trading of nefarious files. 2) Click "Save and Close"

    1) It’s recommended that the anonymous user have the following rights to only allow the “uploading” of files to your ftp-server.
    TIP: This will keep people from using your ftp-server as a “dump-site” for trading of nefarious files.
    2) Click “Save and Close”

    KNOWN PROBLEM: Slow Startup after Several Weeks of Heavy Usage

    KNOWN PROBLEM: Slow Startup after Several Weeks of Heavy Usage

    In order to provide information on Server Monitor -> Files Uploaded/Downloaded, the software writes entries into secondary files stored in the Storage-Location directory. These files contain one-line per file uploaded/downloaded and as the usage of the program increases, these files get bigger and bigger. Start-Up of the program will be effected as these files increase in size and the time to load the file into memory increases (and the footprint in memory increases).

    Server Monitor -> Files Downloaded/Uploaded

    Server Monitor -> Files Downloaded/Uploaded

    To resolve this problem, it’s necessary to manually archive these files to another location; this will “reset” the statistics found in Server Monitor -> Files Uploaded/Downloaded.

    You can manually archive these files:
    1) Closing BulletProof FTP Server and ensure the SERVICE is not current running/active
    2) Use My Computer or a Command-Prompt and navigate to the Storage-Location.
    3) Locate the files named below and move them to some archive directory of your choosing (or delete them):

    bpftpserver-common-downloads.ini
    bpftpserver-common-uploads.ini

    4) Start BulletProof FTP Server

    NOTE: In a later version, this will be resolved with a re-organization and re-write of this function in order to save the information in a way that doesn’t affect performance.

    HOWTO: Enable Debug-Mode

    This graphics details a list of 4 steps used to toggle the "DEBUG-MODE" in BulletProof FTP Server.

    This graphics details a list of 4 steps used to toggle the “DEBUG-MODE” in BulletProof FTP Server. Using the DEBUG-MODE in BulletProof FTP Server will cause the program to write extensive debugging information to a file on the desktop. This file can then be emailed to us, along with a description of the exact steps used to produce the error. Using this information, we can trace through all of the logic in the program in order to identify the problem and provide a solution.

    BPFTP Server: Update Available (Click Here); “Nothing Happens!”

    When I click it, NOTHING HAPPENS?!?!?

    When I click it, NOTHING HAPPENS?!?!?

    Whenever there’s a new version available, BPFTP Server will display “Update Available (CLICK HERE)” in a yellow-box at the top of “Server Info”.

    However, in versions prior to and including 2013.1.0.5, this function was inadvertently broken; as a result, please go to our website to download the update. This functionality is restored and working in 2013.1.0.6 and later.