Configuring ScreenOS with TFTP or FTP Servers Enabled Using TFTP/FTP Options
Use the TFTP/FTP option to configure a security device running to enable TFTP or FTP servers to save or import external files. These external files include configuration files (.cfg), ScreenOS firmware versions, public keys, error messages, certificates, and other items.
For security devices running ScreenOS 5.0 or later, NSM does not use the TFTP server on the security device to download ScreenOS firmware versions, certificates, and CRLs to the managed device. To perform these tasks, you must install a TFTP server on the NSM device server. For details, see the Network and Security Manager Installation Guide.
For security devices running ScreenOS 5.1 and later, Network Security Manager uses SSP to download ScreenOS firmware versions, certificates, and CRLs to the managed device.
For TFTP servers, you can specify the following options:
Number of times that the server can retry a TFTP communication before the security device ends the attempt
Timeout (in seconds) before the device terminates an inactive TFTP connection
You can also enable FTP servers to dynamically negotiate a data port other than port 20.
For more detailed explanation about configuring TFTP or FTP servers for security devices, see the ip commands in the NetScreen CLI Reference Guide.