Carnival Internet has hinted at the following features for the next point release (v4.2):
These additions would transform the product from a simple FTP daemon into a full hybrid cloud MFT gateway.
Cause: Your client does not support TLS 1.3 or required cipher suites (AES-256-GCM). Fix: Upgrade your FTP client. Carnival's new server rejects SSLv3, TLS 1.0, and TLS 1.1. You must have TLS 1.2 or 1.3.
Since the release, forums have noted a few edge cases. Here is how to solve them:
Problem: "After upgrade, my FTP client says 'Unable to establish data connection.'"
Solution: This is likely the new strict Passive Mode port range. Go to Advanced > Passive Mode and define a custom port range (e.g., 50000-50100). Ensure your firewall forwards these ports.
Problem: "Web admin panel shows 'Access Denied' on a domain controller."
Solution: The web admin uses Windows authentication by default. Ensure your user account has been added to the local group Carnival Internet FTP Admins. Add DOMAIN\YourUsername manually via Computer Management.
Problem: "Scripts that worked on v3.5 now throw errors."
Solution: The new server runs scripts under a lower integrity level. Move your PowerShell scripts to C:\ProgramData\CarnivalInternet\Scripts and grant Read & Execute to the SYSTEM account.
| Feature | Carnival Internet (New) | FileZilla Server (Free) | Cerberus FTP Server | | :--- | :--- | :--- | :--- | | TLS 1.3 Support | Yes | No (1.2 only) | Yes | | Webhooks/Events | Yes (PowerShell) | No | Yes (Enterprise only) | | AD/LDAP Sync | Yes | No (via plugin) | Yes | | Web Admin | Yes (Optional) | No | Yes (Built-in) | | Price | $199 (One-time) | Free | $599/year | | Windows Service | Native | Yes | Native |
Reading welcome.txt often gives a flavor text, but credentials.txt (or files found in the FTP directory) usually contain a username and a password hint.
Example Content:
"Don't forget to update the web portal, admin. Your password is too weak." - User:
admin
Or you might find a list of possible usernames on the HTTP website (staff directory) and use the FTP files as the password source.
Even with a "New" server, FTP over the internet is tricky. Here are solutions to frequent support tickets.
If the FTP server allows anonymous login but doesn't reveal a password file, but we found usernames on the website (e.g., clown, magician, admin), we can attempt to brute force the FTP login.
hydra -l admin -P /usr/share/wordlists/rockyou.txt ftp://<Target_IP>
The "New" server isn't just a software patch; it is a complete re-architecture designed to handle 4K video and IoT sensor data.