No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

FusionInsight HD V100R002C60SPC200 Product Description 06

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
FTP-Server

FTP-Server

Basic Principle

Function

FTP-Server is a pure java File Transfer Protocol (FTP) Service based on the existing open FTP protocol. FTP-Server supports FTP and FTP over SSL (FTPS). Each FTP-Server service supports port and passive data transmission modes. You can perform operations, such as uploading or downloading files, viewing, creating, or deleting directories, and modifying file access permissions, on the Hadoop distributed file system (HDFS) through an FTP client.

  • Supports FTPS. FTPS-based data transmission is encrypted to ensure security.

    FTP has security risks. It is recommended that FTPS be used.

  • Supports port and passive data transmision modes.
  • Performs user authentication by using the Kerberos authentication service provided by a cluster.
Structure

The FTP-Server service consists of multiple FTP-Server processes or FTPS-Server processes, as shown in Figure 2-54.

The FTP-Server service can be deployed on multiple nodes, each node has only one FTP-Server instance, and each instance has only one FTP-Server process.

Figure 2-54 FTP-Server structure

FTP Client

Accesses the FTP server to upload and download data. The FTP clients are integrated into service applications.

FTP Servers

FTP-Server provides standard FTP interfaces externally for FTP clients to access the HDFS system, which provides most of the FTP commands. FTP-Server also provides a standard interface for the FTP client to access the HDFS and offers most FTP commands.

The basic FusionInsight HD services implement underlying services of FTP servers. That is, the Kerberos security authentication service implements user management, the HDFS service implements data storage, and the OMS service implements service configuration.

Basic server

The FTP server uses the following basic services:

  • Kerberos: implements FTP user management and user login authentication.
  • HDFS: implements data storage.
  • OMS: configures FTP service parameters and enables or disables FTP services.
Principle

Figure 2-55 shows the FTP-Server data access process.

Figure 2-55 FTP-Server data access process
  1. An FTP client connects to the FTP server using the FTP service IP address and port number.
  2. The FTP server uses the information to perform user authentication on the Kerberos module.
  3. After the authentication succeeds, the FTP server accesses HDFS and returns the file information to the client.
  4. The client uses standard FTP to upload and download files and manage HDFS file directories.
Security

FTP-based communications are not encrypted. Usernames, passwords, and transmitted data are prone to theft. Therefore, adopt FTPS in an untrusted network. FusionInsight HD provides FTP-Server to support basic enterprise and finance applications. FTPS allows data to be encrypted during transmission, effectively preventing information leakage. When the client uses FTPS, only the implicit FTP over TLS encryption mode is supported.

The FTP-Server process of FTP is disabled by default. You can enable it as required on the FTP service configuration window. A connection can be created (using the business IP address) only after the service is restarted.

Each node supports 16 FTP/FTPS (user or client) connections by default. FTPS is recommended to satisfy performance requirements. That is, the command channel is encrypted but the data channel is not encrypted.

Relationship with Components

Relationship Between FTP-Server and HDFS

HDFS is the storage file system of FTP-Server. All the data uploaded by users is stored on related directories on HDFS. Users perform operations on the files in HDFS by using FTP commands.

Relationship Between FTP-Server and Kerberos

Kerberos Authentication Module is the authentication module of FTP-Server. FTP-Client needs to send the username and password to FTP-Server before connecting to FTP-Server. After receiving the username and password, FTP-Server uses the Kerberos service to check whether the password is correct and whether the user has the rights to access FTP-Server.

Translation
Download
Updated: 2019-04-10

Document ID: EDOC1000104139

Views: 6006

Downloads: 64

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next