This guide assumes you have a static public IP, NAT router, Windows, and FileZilla Server installed.
- Log on to the FileZilla Server Interface.
- Open Settings from the Edit menu.
- Press Passive Mode Settings.
- Check Use custom port range and specify 980-989.
- Press Use the following IP and type the server’s public IP into the textbox.
- Go to SSL/TLS Setttings.
- Check Enable FTP over SSL/TLS support (FTPS).
- Generate a certificate or import one.
- Check Disallow plain uncencrypted FTP. (paranoia)
- Forward incoming tcp ports 980-990 on your router to the local IP of the server.
980-989 for data, 990 for control.
- Start Windows Firewall with Advanced Security. (habit)
- Click Inbound Rules and Select New Rule.
- Select Program and click Next.
- Select This program path and click Browse.
- Add FileZilla Server.exe and click Next. (%ProgramFiles% (x86)\FileZilla Server\FileZilla server.exe in my case)
- Select Allow the Connection and click Next.
- Check all profiles and click Next.
- Enter a rule name such as “FileZilla Server FTPS Server” and click Finish.
Assuming you’ve created an account properly, you are now ready to *securely connect to the server from the internet.
* You will need a domain name to point to the public IP and a certificate to match the domain name. I won’t go into details about SSL security in this post.