Go Back   MacRumors Forums > Apple Applications > Mac Applications and Mac App Store

Reply
 
Thread Tools Search this Thread Display Modes
Old Jul 27, 2007, 07:12 PM   #1
dingdongbubble
macrumors 6502a
 
Join Date: Jun 2007
SSH/VPN and FTP: How do I use them?

OK I am not an expert in computers so please dont thik that I am an idiot.

What is SSH and VPN? How can I use them? Do they take a lot of bandiwdth? Are they hard to configure?

FTP: What is its primary use? Where do people most often use it? Can I transfer using an FTP client across a LAN or over the internet to some friend?
dingdongbubble is offline   0 Reply With Quote
Old Jul 31, 2007, 05:34 PM   #2
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
Anyone? I dont like using Yousendit for big files. Can an fTP do the same?
dingdongbubble is offline   0 Reply With Quote
Old Jul 31, 2007, 05:45 PM   #3
Aea
macrumors 6502a
 
Aea's Avatar
 
Join Date: May 2007
Location: Denver, Colorado
Quote:
Originally Posted by dingdongbubble View Post
OK I am not an expert in computers so please dont thik that I am an idiot.

What is SSH and VPN? How can I use them? Do they take a lot of bandiwdth? Are they hard to configure?

FTP: What is its primary use? Where do people most often use it? Can I transfer using an FTP client across a LAN or over the internet to some friend?
SSH - Secure Shell to Remote Server (Typically 'Nix)
VPN - Virtual Private Network - Connecting to a remote location as if it was locally accessible (check me on this, not sure)

FTP - File Transfer Protocol - Typically used to transfer files from one location to another...

Use depends, SSH is as easy as typing ssh ip -p port into terminal, but actually being able to use a shell depends on the target system and takes experience.

Most of these protocols are bandwidth efficient that it depends on the files you're transferring, the overhead is small, but transferring a 1GB file will use up 1GBs of bandwidth.

You can use FTP for that purpose, but one of you will need to establish an FTP server on your machine.

Your questions seem to be all over the place, so you probably have another idea in mind (such as transferring files to a friend), so in that case it might be better to ask that directly
Aea is offline   0 Reply With Quote
Old Jul 31, 2007, 05:50 PM   #4
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
Thanks Whats a Shell?

And VPN sounds darn good. My Dads IT folks use VCN. Can I use VPN to access my Mac from my mobile phone?

Finally is setting up a FTP server a hard and technical thing like using command line and knowing jargon? Are there no 'easy to use' FTP programs out there so lets say I want to send a file to a friend, I go to the program, it automatically and easily creates an ftp server, I give a link to m friend and using another ftp program he downloads the file?
dingdongbubble is offline   0 Reply With Quote
Old Aug 1, 2007, 03:12 AM   #5
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
OK I got CrossFTP Server. Will it be ok for basic FTP across the internet?
dingdongbubble is offline   0 Reply With Quote
Old Aug 1, 2007, 05:24 PM   #6
theBB
macrumors 68020
 
theBB's Avatar
 
Join Date: Jan 2006
Quote:
Originally Posted by dingdongbubble View Post
OK I got CrossFTP Server. Will it be ok for basic FTP across the internet?
I use Fugu for secure (encrypted) FTP and I like it quite a bit. I don't know about yours, but probably it is OK.

SFTP is a good option to transfer files from one computer to another, but it may be a bit complicated to do it between your home computer and your friends computer in another home. Not that the software is complicated to use, but you need to know IP address of your friends computer. Kind of like, you need to know the phone number before you can call that person. Home internet connections unfortunately do not have fixed, easy to track numbers, so it takes a bit of work to figure it out. Your ISP, let's say Comcast or Verizon, assigns your home a number, but that number may change over time. Besides, most people use routers and wireless base stations that assign additional sets of numbers to the computers inside the house and may not make those numbers visible from the outside for security reasons.
theBB is offline   0 Reply With Quote
Old Aug 28, 2007, 04:29 PM   #7
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
Ok folks I am trying to setup and FTP at home. It works on my LAN but how can I make it work from WAN? Should my FTP client try access the WAN IP? And I am behind a router so the thing gets split up onto the LAN. Now I went to my router config and forwarded (or something) FTP port 21 onto my server computers LAN IP. Is this correct?

I am trying to setup a Windows XP as the server. Should I use Passive or Active mode?
dingdongbubble is offline   0 Reply With Quote
Old Aug 28, 2007, 04:31 PM   #8
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
OK when I try to use another computer on the LAN to access the FTP via WAN, it gives me a 530 error Invalid User. What should I do. I ahve configured my FTP server to allow anonymous access.
dingdongbubble is offline   0 Reply With Quote
Old Aug 28, 2007, 06:06 PM   #9
Cromulent
macrumors 603
 
Cromulent's Avatar
 
Join Date: Oct 2006
Location: The Land of Hope and Glory
Please try and explain exactly what is that you are trying to do. At the moment I am confused, first of all you said that you want to be able to access your friends machine via FTP and now you seem to be configuring an FTP server.
__________________
Neural Advance - Mac OS X, UNIX and Windows Development
Last.fm Profile | Extreme Metal Reviews
MP 4x 2.66Ghz Xeons / 6GB RAM / 640GB + 500GB + 750GB + 1TB HDDs / ATI Radeon 4870 / iPad 3
Cromulent is offline   0 Reply With Quote
Old Aug 28, 2007, 09:28 PM   #10
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
I am trying to make an FTP server so that I can easily transfer files with friends.

Latest update:
I tried accessing the FTP from another computer via WAN. I had to put in my routers admin password for it to stop showing me the error 530 invalid user. But once I do that, nothing comes up as though I am in an empty folder (I am accessing using Win XP Home). But when I use the same PC to access the FTP via LAN, it works properly.

An idea as to whats going on?
dingdongbubble is offline   0 Reply With Quote
Old Aug 28, 2007, 10:05 PM   #11
sndcj1
macrumors member
 
Join Date: May 2007
Location: Chicago
If you are using a windows machine...

then I would use Filezilla for your ftp server. It is very easy to configure, and you can give discrete users different access to different folders on your drive based on group or individual. As far as setting it up through the router, you will need at least port 21 open and passed through to the xp machine, and you might be able to just turn on UPNP on you router to take care of the rest. That might even work with the port 21 thing. Port 21 is the negotiation port, the transfers actually happen on a higher port.
sndcj1 is offline   0 Reply With Quote
Old Aug 29, 2007, 12:17 PM   #12
GimmeSlack12
macrumors 603
 
GimmeSlack12's Avatar
 
Join Date: Apr 2005
Location: San Francisco
So CrossFTP is a Java based FTP server? Yikes, sounds like doing it the hardway, or rather not the way I'd do it.

Get Filezilla like suggested above ^^^. Keep note of the port it is using default:14147.
Put in a password. And start the server.

Now go to the Users and make some accounts, add passwords for them, and then setup some Shared Folders.

From the WAN you can have people connect to your world IP and the correct port (make sure this port is forwarded by your router to the server computer). And you should be able to see whatever folders you've shared at this point.
__________________
iMac 24" iBook G4 iPhone 4 iPod 80Gb
GimmeSlack12 is offline   0 Reply With Quote
Old Aug 29, 2007, 03:43 PM   #13
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
Ok this is what I did:

Made a DynDNS account.
Configured my router to update my DynDNS account with the latest WAN IP address
Forwarded port 21 to my static LAN IP address running the FTP server
Configured my FTP server.
Successfully used an FTP client connected to the server via LAN using anonymous user
tried accessing the DYNDNS host name using HTTP and got to my router's browser based configuration page (lol)
i typed in ftp:// then my DynDNS hostname says invalid user.
I tried putting user name as admin which is my routers administrator username
it asked for password, i put in the routers password

this is what I get (attached screenshot).
it looks like there is nothing.

I am using NAPT as my address translation. NAPT is Network Access Port Translation. If I put NAT, only one computer can access the internet.

Is somethi9ng wrong with my DynDNS? I can show u a screenshot.
Attached Thumbnails
Click image for larger version

Name:	ftp.JPG
Views:	28
Size:	80.7 KB
ID:	83671  
dingdongbubble is offline   0 Reply With Quote
Old Aug 30, 2007, 07:52 AM   #14
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
Anyone?
dingdongbubble is offline   0 Reply With Quote
Old Aug 30, 2007, 08:01 AM   #15
yellow
Moderator
 
yellow's Avatar
 
Join Date: Oct 2003
Location: Portland, OR
For starters, FTP is incredibly insecure. All usernames and password are sent in cleartext. But since you're using it, make sure you chroot people into their own accounts.

In order to make this work, you have to open up the requisite ports on your router and point them to your Mac. Ports 20 and 21 need to be opened and clients need to use active FTP.
yellow is offline   0 Reply With Quote
Old Aug 30, 2007, 08:13 AM   #16
dalvin200
macrumors 68040
 
Join Date: Mar 2006
Location: Nottingham, UK
what type of files are you trying to share?

music? documents?

you could always find free hosting and upload your files to the server, put a password on the directory so only authorized users can access the files..

IMO much easier for what you are trying to achieve
__________________
Search before you post: MRoogle
dalvin200 is offline   0 Reply With Quote
Old Aug 30, 2007, 08:44 AM   #17
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
Well there is an assortment of file types. I dont think uploading 50-60 GB of files would be a good idea. and I am doing this so transfers between people are easier. Uploading all that while not being sure that my friends will ever require certain files is stupid for me.

Opening/Forwarding port 20 did not help. The point over ehrer is that my FTP server is fine and all that. Problem over here is I think because I am behind a router and my computers IP is hidden or inaccessible from the WAN.
dingdongbubble is offline   0 Reply With Quote
Old Aug 30, 2007, 08:47 AM   #18
yellow
Moderator
 
yellow's Avatar
 
Join Date: Oct 2003
Location: Portland, OR
Your Router must have ports 20 & 21 open and port forwarded to your machine that is hosting the FTP server. And then, the clients MUST use active FTP to connect. Passive won't work. Most FTP clients use passive by default.

Use netstat -n to ensure that your ftp service is functional. Make sure your software firewall is off as well.
yellow is offline   0 Reply With Quote
Old Aug 30, 2007, 09:03 AM   #19
jim.arrows
macrumors regular
 
Join Date: Dec 2006
Quote:
Originally Posted by dingdongbubble View Post
Well there is an assortment of file types. I dont think uploading 50-60 GB of files would be a good idea. and I am doing this so transfers between people are easier. Uploading all that while not being sure that my friends will ever require certain files is stupid for me.

Opening/Forwarding port 20 did not help. The point over ehrer is that my FTP server is fine and all that. Problem over here is I think because I am behind a router and my computers IP is hidden or inaccessible from the WAN.
Read this link, it's a nice summary of active vs. passive ftp, which as yellow stated is why it's not working for you.

http://slacksite.com/other/ftp.html

EDIT: Should also note, a far better solution would be SecureFTP (SFTP), which would solve a lot of your problems by only needing to forward port 22, not to mention being a lot more secure. Just set up a guest account and give all your friends the username and password. Much simpler from the port-forwarding perspective and more secure...

Last edited by jim.arrows; Aug 30, 2007 at 09:10 AM.
jim.arrows is offline   0 Reply With Quote
Old Aug 30, 2007, 10:22 AM   #20
yellow
Moderator
 
yellow's Avatar
 
Join Date: Oct 2003
Location: Portland, OR
Quote:
Originally Posted by jim.arrows View Post
EDIT: Should also note, a far better solution would be SecureFTP (SFTP), which would solve a lot of your problems by only needing to forward port 22, not to mention being a lot more secure. Just set up a guest account and give all your friends the username and password. Much simpler from the port-forwarding perspective and more secure...
Agreed, SFTP is much more secure.

But you cannot chroot an SFTP account, right?
yellow is offline   0 Reply With Quote
Old Aug 30, 2007, 09:14 PM   #21
jim.arrows
macrumors regular
 
Join Date: Dec 2006
Quote:
Originally Posted by yellow View Post
Agreed, SFTP is much more secure.

But you cannot chroot an SFTP account, right?
Dunno, I'm a Cisco guy, not an SA; but just reading the thread, I don't think he'll be setting up a chroot environment in the near term -- possibly down the line, but not in the near term.
jim.arrows is offline   0 Reply With Quote
Old Aug 30, 2007, 09:29 PM   #22
tuxtpenguin
macrumors regular
 
Join Date: May 2007
Location: TX
I would recommend that you turn off anonymous FTP on the server as it will allow anyone to connect as anonymous and depending on the FTP server software, all it may log is the IP address of the connecting machine.
tuxtpenguin is offline   0 Reply With Quote
Old Aug 30, 2007, 09:44 PM   #23
dingdongbubble
Thread Starter
macrumors 6502a
 
Join Date: Jun 2007
For SFTP, do I need a new server software or do I just need to add a password?
dingdongbubble is offline   0 Reply With Quote
Old Aug 31, 2007, 08:38 AM   #24
yellow
Moderator
 
yellow's Avatar
 
Join Date: Oct 2003
Location: Portland, OR
Just turn on "Remote Access" and you can then SFTP to your heart's content.
yellow is offline   0 Reply With Quote

Reply
MacRumors Forums > Apple Applications > Mac Applications and Mac App Store

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
thread Thread Starter Forum Replies Last Post
Ssh server. How to block all internet traffic except ssh? Mikehuang OS X Mavericks (10.9) 3 Mar 30, 2014 09:55 PM
VPN services: The explain the difference technology between ONSPEED and Strong VPN. animatedude OS X 0 Nov 7, 2012 07:55 PM
OS X Server, hostname ambiguity, and VPN/SSH issues mbarriault Mac OS X Server, Xserve, and Networking 1 Aug 1, 2012 03:25 PM

Forum Jump

All times are GMT -5. The time now is 03:42 AM.

Mac Rumors | Mac | iPhone | iPhone Game Reviews | iPhone Apps

Mobile Version | Fixed | Fluid | Fluid HD
Copyright 2002-2013, MacRumors.com, LLC