FTP
General

Host Name/IP

Host name or IP address of the FTP host.


Host Port

TCP port number of the FTP host. Enter a valid integer between 1 and 65,535.


Time Out (seconds)

Enter the number of seconds to wait for the FTP host connection to be established before timing out. Valid range is 1 to 3,600 and the default value is 60 seconds.


Username

Enter a valid user ID for logging into the FTP server host. Leaving the username field empty will cause FlexTerm to prompt the user for the username during file transfer operations.


Password

Enter the password for the provided user ID.  Leaving the password field empty will cause FlexTerm to prompt the user for the password during file transfer operations.


Account

Enter the account name on the FTP host, if required. Some FTP hosts require providing the account name in addition to username and password.


Default Remote Directory

Enter the name of a valid directory on the host to change to after a successful connection.


Verify before Overwriting Files (receive only)

Enable (default) to display a warning dialog when receiving a file that already exists at the target location. Disable to automatically overwrite existing files without warning.


Display Transfer Status

Enable (default) to display a dialog, which shows file transfer status.

Security
Encryption

Choose from one of the following:

  • None (insecure)
  • Implicit SSL/TLS
  • Explicit SSL/TLS
  • SSH
SSL/TLS

SSL/TLS Protocol

Specify the SSL/TLS protocol to use for encryption, where Default will negotiate the highest level available on the host system. If a specific protocol is required, choose from the list. Note that SSL 3 and lower are considered obsolete due to vulnerabilities and should not be used unless required by the host.


Encrypt Data Channel

Enable (default) to encrypt both the control channel and data channel, or disable to encrypt only the control channel.

Server Authentication

Accepted Certificates

Determines which certificate types to accept:


Self-Signed

Enable to accept a self-signed server certificate that was not acquired through a certificate authority. (These are common in test environments.)


Expired

Enable to accept a server certificate that has expired.


Not Yet Valid

Enable to accept a server certificate that has a future starting date.


Invalid

Enable to accept a server certificate that is invalid for any reason other than the date or signature. With this option enabled, FlexTerm will not check the validity of the server certificate.


Name Mismatch

Enable to accept certificates where the name provided when the certificate was created does not match the host name. Host names may be either an IP address or a fully qualified DNS name.


Not Accepted Action

Determines how FlexTerm will respond to any items above that are disabled. Items above that are enabled will ignore this option and allow the certificate.


Choose one of the following actions:

    • Ignore and Connect
    • Prompt
    • Do Not Connect
Client Authentication

Enable

When enabled, a client certificate will be used to establish an encrypted connection with the host. A locally installed certificate must be specified in order to use this option.


Client Certificate

Select the certificate to use for client authentication from the list of installed certificates. Certificates must be imported to the Microsoft Windows "Personal" Certificate Store before they are available to use with FlexTerm.

SSH
Protocol Options

Compression Level

Choose compression level if supported by the FTP host. Disabled provides the fastest transfer speed while 9 provides the highest level of compression, but is slowest. This setting only affects outgoing data.


Encryption Algorithms

Select which encryption algorithms are allowed where Any is the default.


Host Key Algorithms

Select which host key (server key) algorithms are allowed where Any is the default.


Key Exchange Algorithms

Select which key exchange algorithms are allowed where Any is the default.


Mac Algorithms

Select which message authentication code algorithms are allowed where Any is the default.


Min Diffie Hellman Key Size (bits)

Minimum allowed size of the ephemeral Diffie-Hellman prime. Valid range is 512 to 16,384 and default is 1024.


Min RSA Key Size (bits)

Minimum allowed size of the RSA key. Valid range is 512 to 16,384 and default is 1024.

Private Key Authentication

Enable

Enable to utilize a private key for authentication.


Private Key File

Browse for the location of the private key in .pem format.


Private Key Password

Enter the password for the private key if required.

Proxy
Proxy Type

Select one of the following types of proxies for connecting to the network:

  • Socks 4
  • Socks 4A
  • Socks 5
  • HTTP Connect
  • Site Command
  • User/Pass Command
  • OPEN Command
  • Double User/Pass Commands


Proxy Host Name/IP

Enter the host name or IP address of the proxy server.


Proxy Port

Enter the TCP listening port for the proxy server. Valid range is 1 to 65,535.


Proxy Username

Enter the username for logging in to the proxy server.


Proxy Password

Enter the password for logging in to the proxy server.

Advanced
Passive Mode

Enable (default) to use the passive data transfer mode for initiating the transfer instead of active mode. In active mode, FlexTerm opens a random port, sends the FTP server the random port number on which it is listening over the control channel, then waits for a connection from the FTP server. In passive mode, the FTP server opens a random port, sends FlexTerm the server's IP address to connect to and the port on which it is listening over the control channel, then waits for a connection from FlexTerm.


Encoding

Select one of the following for encoding and decoding command parameters and server responses, where Default is the encoding for the operating system's current ANSI code page:


  • Default
  • ASCII
  • Unicode
  • UTF32
  • UTF7
  • UTF8