NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

PhotoJoseph's avatar
PhotoJoseph
Tutor
Jul 23, 2020
Solved

No SFTP in ReadyNAS 2312; best public server alternative?

I've set up a new ReadyNAS 2312 primarily as a local backup destination  but now that it's in place I'm thinking of other uses for it.   I regularly transfer multi-GB files to individuals, and have...
  • Sandshark's avatar
    Sandshark
    Jul 24, 2020

    The NAS is not set up for individual file or folder permissions, you'll need one or more shares for sharing.  And you'll also have to poke a hole in your router firewall.  

     

    ReadyCLOUD may be an answer, but I recommend you also look at OwnCloud or NextCloud rather than use the NAS authentication system for occasional guest users.  That's what they were built for (though they've been expanded to do much more over time)  You can get a ReadyNAS ready version of either at https://rnxtras.com/ for a very reasonable fee.

     

    I use OwnCloud myself.  NextCloud was in the very early stages when I implemented it, and I just stuck with what I know.  I'd probably choose NextCloud today if starting fresh.

     

    Do you have a static public IP address and/or domain name?  One of the issues you may have is installing an SSL certificate so that the user doesn't get that same warning about the site being unsafe that you do.  That might turn customers away.  And a domain name (which can be via dynamic IP, but is easier with static) is required for installing the certificate.  ReadyCloud does avoid that part of the process as well as the poking a hole in the firewall.

StephenB's avatar
StephenB
Guru - Experienced User
Jul 24, 2020
schumaku wrote:

 

FWIW: ReadyNAS has FTPES implemented, not FTPS.

 

Correct.  But not much difference in practice. 

  • FTPS is implicit FTP over SSL/TLS
  • FTPES is explicit FTP over SSL/TLS

FileZilla and (I think) WinSCP treat them as one protocol with an option for explicit/implicit.  And the NAS (like WikiPedia) just calls both FTPS.  So I generally do also.

 

schumaku wrote:

The FTP server can be configured so only the encrypted FTPES can be used for both the control and data channel. So what was the security concern again?

 

If I recall correctly, it was more a fear that FTPS was "old and hackable". 

 

Both FTPES and SFTP are considered secure. The differences are that

  • SFTP has option support for SSH keys, while FTPS/FTPES does not
  • FTPS/FTPES requires more ports to be forwarded in the firewall.

 

schumaku's avatar
schumaku
Guru - Experienced User
Jul 24, 2020

Big difference StephenB ... look here: FTPS does imply using a dedicated port for an FTP TLS session, the default is 990/TCP. This is nowhere implemened by ReadyNAS, and can't be configured. Thus, the designation FTPS is more than just misleading. FileZilla as a popular FTP client does (correctly) talk of FTP, and allows using "Use explicit FTP over TLS if available" (the default, if available it's FTPES), "Require explicit FTP over TLS" (so it does not connect over plain text FTP, FTPES again), or "Require implicit FTP over TLS" (that's FTPS - not available on the ReadyNAS).

  • StephenB's avatar
    StephenB
    Guru - Experienced User
    Jul 24, 2020
    schumaku wrote:

    Thus, the designation FTPS is more than just misleading. 

    I think we are way off topic.  We agree that the NAS actually does FTPES, and that you do need to configure explicit TLS/SSL in FileZilla.

     

     

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More