我想在我的亚马逊Ec2窗口实例上安装FTP服务, 我对此有一些疑问。
答案 0 :(得分:9)
在这里,您将找到一个很棒的教程,它还解释了在亚马逊EC2实例上尝试设置ftp服务器时可能遇到的内部工作和问题。
它还解释了为什么只打开亚马逊防火墙上的端口21将无法正常工作。这个示例使用免费的 filezilla ftp服务器和客户端,但任何都可以使用。
http://me-ol-blog.blogspot.com/2011/03/how-to-install-ftp-server-on-amazon-aws.html
已编辑(24-sep-2013):
因为stackoverflow的最佳策略实践表示不依赖链接,我将信息从我的博客复制到此处:
如何在amazon AWS EC2上安装FTP服务器
This seems to be a big issue as people usually waste a lot of time on this.
The problem lies with 2 elements: the security group settings & the ftp server settings.
FTP is not considered a good solution for passing files between EC2 instances and your computer as it is not firewall "friendly" - you can't just open port 21/TCP on the amazon security group settings because the server is actually sitting on a NAT address and when an ftp client connects to an FTP server using PASV mode then the server tells the client which port and which address to use for the data stream (like directory listing).
If you want an alternate easy solution for transferring files between yourself and the EC2 instance then setup a dropbox on both machines - it doesn't get easier than this... :)
If you still want to set up an FTP server on your EC2 instance then read on...
Typically, people just try to open port 21 and then try to connect and get something similar to:
Status: Server sent passive reply with unroutable address. Using server address instead.
Command: MLSD
Response: 425 Can't open data connection.
The solution is (and for this example I will explain how to perform the setting on FileZilla FTP server on windows):
1. FileZilla FTP server: Edit-> settings -> Passive mode settings:
(x) Retrieve external IP from:
http://ip.filezilla-project.org/ip.php
[ this tells the ftp server to perform a 'whatismyip' and give that to the ftp client, you can also specifically put the address DNS name you use in your remote desktop in the "Use the following IP:", e.g., ec2-6-100-129-60.compute-1.amazonaws.com ]
(x) Use custom port range:
1024-1048
[ these are the ports that will be given to the ftp client - we will open them in the following step in the Firewall ]
2. Amazon security groups: open ports -
a. Custom TCP rule , Port range:21
b. Custom TCP rule, Port range:1024-1048
3. Turn off the windows firewall on the EC2 machine (you don't need it - you have the amazon firewall)
That's it, and just as side note, you don't need to use Elastic IP feature for this to work.
Also don't forget to set your client to use PASV mode (which is typically the default).
You can verify this works by reading the answer the server gives the client when it enters PASV mode:
Command: PASV
Response: 227 Entering Passive Mode (174,149,71,102,4,7)
This response means: "Yo FTP client, use 174.149.71.102 and port 4*256+7=1031"
答案 1 :(得分:5)
Windows EC2实例都是Windows Server 2008.最简单的方法是启用内置FTP功能。
答案 2 :(得分:0)
很多人都建议“关掉”' Windows上的防火墙。远离混乱的防火墙配置似乎很容易,但从长远来看,这不是一个好的安全实践。
博客可能有助于使用IIS 7.x
逐步配置FTPhttp://clouditops.blogspot.in/2016/12/ftp-configuration-on-aws-iis-7x-server.html