Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Configuring ScreenOS with TFTP or FTP Servers Enabled Using TFTP/FTP Options

 

Use the TFTP/FTP option to configure a security device running to enable TFTP or FTP servers to save or import external files. These external files include configuration files (.cfg), ScreenOS firmware versions, public keys, error messages, certificates, and other items.

For security devices running ScreenOS 5.0 or later, NSM does not use the TFTP server on the security device to download ScreenOS firmware versions, certificates, and CRLs to the managed device. To perform these tasks, you must install a TFTP server on the NSM device server. For details, see the Network and Security Manager Installation Guide.

Note

For security devices running ScreenOS 5.1 and later, Network Security Manager uses SSP to download ScreenOS firmware versions, certificates, and CRLs to the managed device.

For TFTP servers, you can specify the following options:

  • Source interface

  • Number of times that the server can retry a TFTP communication before the security device ends the attempt

  • Timeout (in seconds) before the device terminates an inactive TFTP connection

You can also enable FTP servers to dynamically negotiate a data port other than port 20.

For more detailed explanation about configuring TFTP or FTP servers for security devices, see the ip commands in the NetScreen CLI Reference Guide.

Related Documentation