Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision | ||
cloudappliance/sftpsetup [2019_09_18 13:49] – [SFTP configuration files] doug | cloudappliance/sftpsetup [2020_09_21 21:39] – dan | ||
---|---|---|---|
Line 1: | Line 1: | ||
# FTP/SFTP Configuration | # FTP/SFTP Configuration | ||
+ | ##### last updated: Sept. 21, 2020 | ||
The File Fabric Appliance and SaaS support a number of protocol gateways allowing applications to natively access the File Fabric using FTP/FTPS, SFTP or WebDAV. These are ideal for retrofitting existing applications for object storage. | The File Fabric Appliance and SaaS support a number of protocol gateways allowing applications to natively access the File Fabric using FTP/FTPS, SFTP or WebDAV. These are ideal for retrofitting existing applications for object storage. | ||
Line 13: | Line 14: | ||
* [[cloudftp]] | * [[cloudftp]] | ||
* [[cloudappliance/ | * [[cloudappliance/ | ||
+ | |||
+ | <WRAP center round info 100%> | ||
+ | CloudFTP and the File Fabric' | ||
+ | |||
+ | For example, you may upload a file to SwiftStack through the File Fabric storage using the File Fabric' | ||
+ | |||
+ | Continuing with our example, if the file you are uploading is larger than the storage' | ||
+ | </ | ||
## Initial Setup | ## Initial Setup | ||
- | Setting the domain name during [[cloudappliance: | + | |
+ | <WRAP center round info 100%> | ||
+ | Setting the domain name during [[cloudappliance: | ||
+ | |||
+ | Additionally, | ||
+ | </ | ||
+ | |||
+ | |||
In the example below, the domain name is perf.smestorage.com. | In the example below, the domain name is perf.smestorage.com. | ||
Line 31: | Line 48: | ||
All firewall settings are already configured for the default basic configuration. | All firewall settings are already configured for the default basic configuration. | ||
+ | |||
+ | ## Enabling the Service | ||
+ | |||
+ | The File Fabric' | ||
+ | |||
+ | ``` | ||
+ | su - | ||
+ | systemctl enable cloudftp | ||
+ | systemctl start cloudftp | ||
+ | ``` | ||
+ | |||
+ | ## Using an Additional Subdomain | ||
+ | |||
+ | CloudFTP can be accessed using the File Fabric' | ||
+ | |||
+ | Since version 1901, File Fabric license keys have been bound to the FQDNs by which the File Fabric is accessed. | ||
## FTP Services | ## FTP Services | ||
Line 49: | Line 82: | ||
## Advanced FTP/FTPS Setup | ## Advanced FTP/FTPS Setup | ||
- | Systems publicly exposing FTP based protocols might need additional setup to meet the needs of security | + | Systems publicly exposing FTP based protocols might need additional setup to meet the needs of security |
### FTP configuration files | ### FTP configuration files | ||
Line 234: | Line 267: | ||
### Regenerate SFTP RSA Keys | ### Regenerate SFTP RSA Keys | ||
+ | |||
+ | <WRAP center round info 100%> | ||
+ | If you are upgrading from a pre v2006 File Fabric that exposes | ||
+ | |||
+ | Starting with version 2006, CloudSFTP requires the type of certificates (keys) that are created when you follow the instructions in this section. The default certificate that was provided with earlier versions of the File Fabric will not work with v2006 and above. We recommend that you create the new RSA key on one of your nodes and copy/apply the same key to your secondary nodes as well. | ||
+ | |||
+ | Depending on their SFTP client software, when you replace the key your SFTP users may see a notification that the key has changed. You should replace the key well in advance of upgrading the File Fabric to simplify issue analysis should there be a problem with the new key. | ||
+ | </ | ||
+ | |||
+ | |||
It is recommended to generate new secure keys for the SFTP server. | It is recommended to generate new secure keys for the SFTP server. |