http://blog.csdn.net/wumenglu1018/article/details/54233826
FTP的主動傳輸和被動傳輸
主動模式:
- 客戶端從端口N向服務器21端口發起連接.
- 客戶端再N+1端口監聽服務器的連接.
-
服務器從端口20 向客戶端 N+1 端口發起連接.
image.png
被動模式:
- 客戶端從端口N向服務器21端口發起連接.
- 服務端在X端口(X>1024)監聽客戶端的連接.
-
客戶端從端口N+1 向服務端 X 端口發起連接.
image.png
主動FTP:
命令連接:客戶端 大于1024端口 -> 服務器 21端口
數據連接:客戶端 大于1024端口 <- 服務器20端口
被動FTP:
命令連接:客戶端 大于1024端口 -> 服務器 21端口
數據連接:客戶端 大于1024端口 -> 服務器 大于1024端口
簡要總結:
- 主動FTP對FTP服務器的管理有利,但對客戶端的管理不利。因為FTP服務器企圖與客戶端的高位隨機端口建立連接,而這個端口很有可能被客戶端的防火墻阻塞掉。
- 被動FTP對FTP客戶端的管理有利,但對服務器端的管理不利。因為客戶端要與服務器端建立兩個連接,其中一個連到一個高位隨機端口,而這個端口很有可能被服務器端的防火墻阻塞掉。
辦法:
- 既然FTP服務器的管理員需要他們的服務器有最多的客戶連接,那么必須得支持被動FTP。我們可以通過為FTP服務器指定一個有限的端口范圍來減小服務器高位端口的暴露。這樣,不在這個范圍的任何端口會被服務器的防火墻阻塞。雖然這沒有消除所有針對服務器的危險,但它大大減少了危險.
例:
Class FTPParam : FTP所需參數
import lombok.Builder;
/**
* ftp配置屬性
*/
@Builder
public class FTPParam {
private String host;
private int port;
private String username;
private String password;
private String uploadPath;
public String getHost() {
return host;
}
public void setHost(String host) {
this.host = host;
}
public int getPort() {
return port;
}
public void setPort(int port) {
this.port = port;
}
public String getUsername() {
return username;
}
public void setUsername(String username) {
this.username = username;
}
public String getPassword() {
return password;
}
public void setPassword(String password) {
this.password = password;
}
public String getUploadPath() {
return uploadPath;
}
public void setUploadPath(String uploadPath) {
this.uploadPath = uploadPath;
}
/* (non-Javadoc)
* @see java.lang.Object#toString()
*/
@Override
public String toString() {
StringBuilder builder = new StringBuilder();
builder.append("FTPParam [host=");
builder.append(host);
builder.append(", port=");
builder.append(port);
builder.append(", username=");
builder.append(username);
builder.append(", password=");
builder.append(password);
builder.append(", uploadPath=");
builder.append(uploadPath);
builder.append("]");
return builder.toString();
}
}
Class FTPUtil: ftp工具類
public class FTPUtil {
public final static Logger LOG = LoggerFactory.getLogger(FTPUtil.class);
/**
* 發送文件到FTP
*
* @param fileLocalPath 本地文件路徑(包含文件名 eg: //var//temp//test)
* @param fileName 遠程服務器文件名
* @param param ftp配置
* @return
*/
public static boolean downLoadFileToLocal(String fileLocalPath, String fileName, FTPParam param) {
LOG.info("開始下載文件至本地,param:{}",param);
//狀態
boolean result = false;
FTPClient ftpClient = new FTPClient();
FileOutputStream fout = null;
try {
ftpClient.connect(param.getHost(), param.getPort());
//判斷ftp連接
if(!FTPReply.isPositiveCompletion(ftpClient.getReplyCode())) {
LOG.error("ftp connect fail,host:{}",param.getHost());
ftpClient.disconnect();
return result;
}
LOG.info("ftpClient.connect success.");
//判斷ftp登陸
if(!ftpClient.login(param.getUsername(), param.getPassword())) {
LOG.error("ftp login fail,username:{}",param.getHost());
ftpClient.logout();
return result;
}
//設置文件類型 :二進制
ftpClient.setFileType(FTPClient.BINARY_FILE_TYPE);
//采用被動模式傳輸
ftpClient.enterLocalPassiveMode();
//設置路徑
LOG.info("ftpClient.connect 設置路徑:{}",param.getUploadPath());
boolean change = ftpClient.changeWorkingDirectory(param.getUploadPath());
if(change){
fout = new FileOutputStream(fileLocalPath);
result = ftpClient.retrieveFile(fileName, fout);
LOG.info("---FTP下載完成---");
}
else {
LOG.info("ftpClient.connect 設置路徑失敗:{}", param.getUploadPath());
}
} catch (Exception e) {
LOG.error("下載文件出錯,報錯:",e);
} finally {
try {
if(fout != null) {
fout.close();
}
if(ftpClient.isConnected()) {
ftpClient.logout();
ftpClient.disconnect();
}
} catch (IOException e) {
LOG.error("關閉FTP或字節流出錯,報錯:",e);
}
}
return result;
}
/**
* 發送文件到FTP
*
* @param fileLocalPath 本地文件路徑(包含文件名 eg: //var//temp//test)
* @param fileName 文件名(上傳到遠程服務器的文件名)
* @param param ftp配置
* @return
*/
public static boolean upLoadFileToFTP(String fileLocalPath, String fileName, FTPParam param) {
LOG.info("開始發送文件至FTP,param:{}",param);
//狀態
boolean fal = false;
FTPClient ftpClient = new FTPClient();
FileInputStream fis = null;
File file = null;
try {
ftpClient.connect(param.getHost(), param.getPort());
//判斷ftp連接
if(!FTPReply.isPositiveCompletion(ftpClient.getReplyCode())) {
LOG.error("ftp connect fail,host:{}",param.getHost());
ftpClient.disconnect();
return fal;
}
LOG.info("ftpClient.connect success.");
//判斷ftp登陸
if(!ftpClient.login(param.getUsername(), param.getPassword())) {
LOG.error("ftp login fail,username:{}",param.getHost());
ftpClient.logout();
return fal;
}
//設置文件類型 :二進制
ftpClient.setFileType(FTPClient.BINARY_FILE_TYPE);
file = new File(fileLocalPath);
fis = new FileInputStream(file);
//采用被動模式傳輸
ftpClient.enterLocalPassiveMode();
//設置上傳路徑
boolean change = ftpClient.changeWorkingDirectory(param.getUploadPath());
LOG.info("ftpClient.connect 設置上傳路徑:{}",param.getUploadPath());
if(change) {
fal = ftpClient.storeFile(fileName, fis);
LOG.info("---FTP上傳完成---");
}else{
LOG.info("ftpClient.connect 設置上傳路徑失敗:{}",param.getUploadPath());
}
} catch (Exception e) {
LOG.error("上傳FTP出錯,報錯:",e);
} finally {
try {
if(fis != null) {
fis.close();
}
fis = null;
file = null;
if(ftpClient.isConnected()) {
ftpClient.logout();
ftpClient.disconnect();
}
} catch (IOException e) {
LOG.error("關閉FTP或字節流出錯,報錯:",e);
}
}
return fal;
}
