Guest

Cisco CSS 11000 Series Content Services Switches

Configuring FTP Port Mode on the CSS 11000

Document ID: 12595

Updated: May 13, 2007

   Print

Introduction

This document provides information on how to configure the FTP port mode on a Cisco CSS 11000 Series Content Services Switch. The client issues the retrieval request and sets up the listening port. The client issues a port command to the FTP server. This command informs the server of the port to which the client listens for the data connection. The server establishes the connection to the address that the port command indicates.

Prerequisites

Requirements

There are no specific requirements for this document.

Components Used

The information in this document is based on these software and hardware versions:

  • CSS 11500

  • CSS Web Network Services (WebNS) Software Version 5.0

The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command.

Network Diagram

This document uses this network setup:

css_portmode_ftp.gif

Conventions

Refer to the Cisco Technical Tips Conventions for more information on document conventions.

Configuration

In this section, you are presented with the information to configure the features described in this document.

Step-by-Step Instructions

Complete these steps in order to configure the FTP port mode on the CSS 11000.

  1. Issue the ftp-record command for the destined servers, and specify the username and password.

    44-css150(config)#ftp-record ns1 172.18.124.206 anonymous "some@where.com"
    44-css150(config)#ftp-record ns2 172.18.124.207 anonymous "some@where.com"
    
  2. Issue the keepalive type ftp command with a predefined FTP record in order to configure service for each server.

    44-css150(config)#service ns1
    Create service <ns1>, [y/n]:y
    44-css150(config-service[ns1])#ip address 172.18.124.206
    44-css150(config-service[ns1])#keepalive type ftp ns1
    44-css150(config-service[ns1])#active
    
  3. Configure a content rule with a virtual IP (VIP) address for the clients to point to when they initiate the FTP session.

    44-css150(config)#owner groupftp
    Create owner <groupftp>, [y/n]:y
    44-css150(config-owner[groupftp])#content groupftp
    Create content <groupftp>, [y/n]:y
    44-css150(config-owner-content[groupftp-groupftp])#add service ns1
    44-css150(config-owner-content[groupftp-groupftp])#add service ns2
    44-css150(config-owner-content[groupftp-groupftp])#vip address 172.18.124.208
    44-css150(config-owner-content[groupftp-groupftp])#application ftp-control
    44-css150(config-owner-content[groupftp-groupftp])#protocol tcp
    44-css150(config-owner-content[groupftp-groupftp])#port 21
    44-css150(config-owner-content[groupftp-groupftp])#act
    
  4. Issue the group command in order to configure a source group.

    44-css150(config)#group groupftp
    Create group <groupftp>, [y/n]:y
    44-css150(config-group[groupftp])#add service ns1
    44-css150(config-group[groupftp])#add service ns2
    44-css150(config-group[groupftp])#vip address 172.18.124.208
    44-css150(config-group[groupftp])#active
    

Verify

Use this section to confirm that your configuration works properly.

The Output Interpreter Tool (registered customers only) (OIT) supports certain show commands. Use the OIT to view an analysis of show command output.

  1. Issue the version command in order to display the software version that runs on the CSS 11000.

    44-css150#version
    Version:               ap0500002 (5.00 Build 2)
    Flash (Locked):        3.10 Build 33
    Flash (Operational):   5.00 Build 2
    Type:                  PRIMARY
    Licensed Cmd Set(s):   Standard Feature Set
                           Enhanced Feature Set
  2. Issue the show running-config command in order to display the running configuration on the CSS 11000.

    44-css150#show running-config
    !Generated on 07/24/2001 10:14:03
    !Active version: ap0500002
    
    configure
    
    !*************************** GLOBAL ***************************
      username admin des-password lecfjgyezbeaxb2g superuser
      no restrict xml
    
      ip route 0.0.0.0 0.0.0.0 172.18.124.1 1
    
      ftp-record ns1 172.18.124.206 anonymous Des-password 
       zd5cbhgagdlescpdbhjhcaga6g4ejfed
      ftp-record ns2 172.18.124.207 anonymous Des-password 
       zd5cbhgagdlescpdbhjhcaga6g4ejfed
    
    !************************** CIRCUIT **************************
    circuit VLAN1
    
      ip address 172.18.124.209 255.255.255.0
    
    !************************** SERVICE **************************
    service ns1
      ip address 172.18.124.206
      keepalive type ftp ns1
      active
    
    service ns2
      ip address 172.18.124.207
      keepalive type ftp ns2
      active
    
    !*************************** OWNER ***************************
    owner FTPowner
    
      content FTPcontent
        VIP address 172.18.124.208
        application ftp-control
        protocol tcp
        port 21
    
      content FTPcontent20
        application ftp-control
        VIP address 172.18.124.208
        add service ns1
        add service ns2
        protocol tcp
        port 21
        active
    
    !*************************** GROUP ***************************
    group FTP
    
      VIP address 172.18.124.208
      add service ns1
      add service ns2
      active
    
    44-css150#    

Troubleshoot

Use this section to troubleshoot your configuration.

Troubleshooting Commands

The Output Interpreter Tool (registered customers only) (OIT) supports certain show commands. Use the OIT to view an analysis of show command output.

  • show group—This command displays a collection of groups or the attributes for a specified group.

    44-css150#show group
    
    Group: FTP - Active (172.18.124.208 Not Redundant)
    Associated ACLs: NONE
         Source Services:
         DNS
         Name: Hits: State: Load: Trans: Keepalive: Conn:
         ----- ----- ------ ----- ------ ---------- -----
         ns1 0 Alive 2 0 FTP 0
         ns2 0 Alive 2 0 FTP 0
     Destination Services:
         NONE
     Group Cumulative Counters:
         Hits/Frames/Bytes: 0/0/0
         Connections Total/Current: 0/0
         FTP Control Total/Current: 0/0
    44-css150#
  • show service —This command displays service information.

    44-css150#show service
    
    Services (3 entries):
    
    Name: ns1 Index: 1
    Type: Local State: Alive
    Rule ( 172.18.124.206 ANY ANY )
    Redirect Domain:
    Redirect String:
    Keepalive: (FTP:ns1 5 3 5 )
    Mtu: 1500 State Transitions: 8
    Connections: 0 Max Connections: 0
    Total Connections: 3 Total Reused Conns: 0
    Weight: 1 Load: 2
    
    Name: ns2 Index: 2
    Type: Local State: Alive
    Rule ( 172.18.124.207 ANY ANY )
    Redirect Domain:
    Redirect String:
    Keepalive: (FTP:ns2 5 3 5 )
    Mtu: 1500 State Transitions: 3
    Connections: 0 Max Connections: 0
    Total Connections: 0 Total Reused Conns: 0
    Weight: 1 Load: 2 
  • show summary—This command displays the relationship among owners, content rules, and services.

    44-css150#show summary
    Global Bypass Counters:
    No Rule Bypass Count: 0
    Acl Bypass Count: 0
    Owner Content Rules State Services Service Hits
         
    FTPowner FTPcontent Suspended
    FTPcontent20 Active ns1 0
    ns2 0
  • show log—This command sends the log activity to your current session or displays the contents in a log or trap log file.

Related Information

Updated: May 13, 2007
Document ID: 12595