File Transfer in DMZ Networks with Serv-U Gateway

Serv-U MFT Server

Secure FTP server software that provides comprehensive security, automation, and centralized control for file transfers across your organization

Download Free Trial
Fully functional for 14 days

This video will help you understand the need for using Serv-U Gateway for file transfer and secure networks and also, some of its key applications in larger and distributed IT environments.

Serv-U Gateway is a secure addition to Serv-U MFT Server and FTP Server software. Similar to a reverse proxy server, it safely handles traffic without passing it to secure internal systems.

Serv-U Gateway provides three main security benefits. It safely accepts incoming connections from outside the firewall on a hardened server located in the DMZ segment without exposing sensitive systems Gateway avoids all inbound connections from the DMZ to the secure private network and ensures no data stored in the DMZ, which helps adhere to PCI DSS and other compliance standards.

Configuring Serv-U Gateway is very simple and happens only on the management console of Serv-U MFT Server or FTP Server. No local configuration is required at the place of Gateway installation. Serv-U and Serv-U Gateway can be deployed either Windows or Linux.

Let's take a closer look at how Serv-U Gateway works. Serv-U connects to Serv-U Gateway and tells it to listen to client connections on specific IP addresses and ports. This connection is called the Gateway Connection Channel. When an FTP client connects to Serv-U Gateway it informs Serv-U about a new connection. And Serv-U sitting in the internal network checks the client's IP address and performs authentication as required. Once the client is approved, Serv-U opens a new connection to Serv-U Gateway called the Gateway Data Channel. Gateway now binds the incoming client connection to the new Gateway Data Channel created specifically, for this connection. This allows data transfer to occur safely between the FTP client and Serv-U File Transfer server.

Besides security reasons Serv-U Gateway is used with Serv-U MFT Server for some key IT requirements especially for geographically dispersed networks: High-availability, load balancing and in disaster recovery.

When multiple instances of Serv-U MFT Server are configured for high-availability, you can also deploy more than one Serv-U Gateway in the DMZ to distribute incoming connections and file transfer load. This helps build redundancy and avoid a single point of failure. A network load balancer is generally used to distribute incoming connections to each Serv-U Gateway to help scale the load to meet actual demand.

When used on a Windows Server, the built-in Windows network load balancing service can be used instead. Serv-U Gateway can also be used in disaster recovery and business continuity scenarios by configuring Gateway and MFT Server to perform secure data backup from storage in one site to another.

Use Serv-U Gateway to increase defense in-depth protection to your file transfers and achieve security compliance.

Visit Serv-U.com to learn more about our Gateway and Serv-U file transfer solutions.

© 2018 SolarWinds Worldwide, LLC. All rights reserved.
{{STATIC CONTENT}}
{{CAPTION_TITLE}}

{{CAPTION_CONTENT}}

{{TITLE}}