MFT FTPS Server
File Transfer Protocol over SSL (FTPS) is an extension to FTP. It uses Transport Layer Security (TLS) and Secure Sockets Layer (SSL) cryptographic protocols to encrypt traffic.
FTPS allows encryption of both the control and data channel connections, either concurrently or independently.
MFT provides FTPS services mainly for customers who often require it when they are working with legacy applications or hardware that exclusively support FTPS.
MFT FTPS Servers operate over Port 21 for the Control Channel and the port range 28000–30000 for the Data Channel.
To create an MFT FTPS Server endpoint:
- Click Organizations.
- Select an organization.
- Click Endpoints.
- Click Add Endpoint.
- Enter the name in the Endpoint Name field.
- Select the MFT FTPS Server protocol from the Type drop-down.
- Enter a description for the endpoint.
- Note the example Public Url to connect to the MFT FTPS Server.
- Click the Save button.
After integrating the endpoint type into a flow, users can create user accounts directly from the Flow Endpoint.
All inbound IP addresses connecting to MFT's FTPS services must be allowlisted. For more information, refer to the IP allowlisting.
Supported Ciphers for MFT FTPS Server
The following ciphers are supported for MFT FTPS Server:
TLSv1.2
Ciphers
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (secp256r1) - ATLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp256r1) - ATLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (secp256r1) - ATLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (secp256r1) - ATLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 (secp256r1) - ATLS_RSA_WITH_AES_128_CBC_SHA (rsa 2048) - ATLS_RSA_WITH_AES_128_GCM_SHA256 (rsa 2048) - ATLS_RSA_WITH_AES_256_CBC_SHA (rsa 2048) - ATLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 2048) - A
Compressors
- NULL
Cipher preference
- client
TLSv1.3
Ciphers
TLS_AKE_WITH_AES_128_GCM_SHA256 (ecdh_x25519) - ATLS_AKE_WITH_AES_256_GCM_SHA384 (ecdh_x25519) - ATLS_AKE_WITH_CHACHA20_POLY1305_SHA256 (ecdh_x25519) - A
Cipher preference
- server
Least strength
- A
