Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
cloudappliance/sftpsetup [2019_11_12 12:00] – [Advanced FTP/FTPS Setup] dancloudappliance/sftpsetup [2020_09_21 21:39] dan
Line 1: Line 1:
 # FTP/SFTP Configuration # FTP/SFTP Configuration
-##### last updated: Nov122019+##### last updated: Sept212020
  
 The File Fabric Appliance and SaaS support a number of protocol gateways allowing applications to natively access the File Fabric using FTP/FTPS, SFTP or WebDAV. These are ideal for retrofitting existing applications for object storage. The File Fabric Appliance and SaaS support a number of protocol gateways allowing applications to natively access the File Fabric using FTP/FTPS, SFTP or WebDAV. These are ideal for retrofitting existing applications for object storage.
Line 14: Line 14:
  * [[cloudftp]]  * [[cloudftp]]
  * [[cloudappliance/appliance-troubleshooting|]]  * [[cloudappliance/appliance-troubleshooting|]]
 +
 +<WRAP center round info 100%>
 +CloudFTP and the File Fabric's other protocol gateways allow your client program to work with the File Fabric using the enabled protocol. Communication between the File Fabric and the underlying storage, however, still occurs using the storage protocol as implemented by the specific connector used to connect the File Fabric to the storage.
 +
 +For example, you may upload a file to SwiftStack through the File Fabric storage using the File Fabric's CloudFTP gateway, but the File Fabric will upload the file to the SwiftStack storage using the Swift protocol.  This means that the settings you chose when you attached the SwiftStack storage to the File Fabric will be used.
 +
 +Continuing with our example, if the file you are uploading is larger than the storage's single object size limit (often 5GB) then you will need to have either static large objects or dynamic large objects enabled in the provider settings.  Otherwise the upload will fail.
 +</WRAP>
  
 ## Initial Setup ## Initial Setup
Line 19: Line 27:
  
 <WRAP center round info 100%> <WRAP center round info 100%>
-Setting the domain name during [[cloudappliance:applinstallation|Appliance Installation]] allows **FTP** and **FTPS** to be be accessed through the domain name.  To access the File Fabric using **SFTP** through CloudFTP you must first manually reset the value of the serversme variable in /var/www/smestorage/ftpserver/sftpserver/sftpserver.conf to the File Fabric's domain name.+Setting the domain name during [[cloudappliance:applinstallation|Appliance Installation]] allows **FTP** and **FTPS** to be be accessed through the domain name.  To access the File Fabric using **SFTP** through CloudFTP when using a File Fabric version before v1906.04, you must first manually reset the value of the serversme variable in /var/www/smestorage/ftpserver/sftpserver/sftpserver.conf to the File Fabric's domain name
 + 
 +Additionally, you may find that it is necessary to regenerate the File Fabric's SFTP RSA keys before using **SFTP** to access the File Fabric with CloudFTP.  Instructions for doing that can be found later in this document.
 </WRAP> </WRAP>
  
Line 41: Line 51:
 ## Enabling the Service ## Enabling the Service
  
-The File Fabric's FTP/FTPS/SFTP service may not be enabled on installation.  To ensure that it is turned on and enabled, log in as smeconfiguser then become root and start and enable and start the service:+The File Fabric's FTP/FTPS/SFTP service may not be enabled on installation.  To ensure that it is turned on and enabled, log in as smeconfiguser then become root and enable and start the service:
  
 ``` ```
Line 48: Line 58:
 systemctl start cloudftp  systemctl start cloudftp 
 ``` ```
 +
 ## Using an Additional Subdomain ## Using an Additional Subdomain
  
Line 256: Line 267:
  
 ### Regenerate SFTP RSA Keys ### Regenerate SFTP RSA Keys
 +
 +<WRAP center round info 100%>
 +If you are upgrading from a pre v2006 File Fabric that exposes  CloudSFTP, please read this section carefully.
 +
 +Starting with version 2006, CloudSFTP requires the type of certificates (keys) that are created when you follow the instructions in this section. The default certificate that was provided with earlier versions of the File Fabric will not work with v2006 and above. We recommend that you create the new RSA key on one of your nodes and copy/apply the same key to your secondary nodes as well.
 +
 +Depending on their SFTP client software, when you replace the key your SFTP users may see a notification that the key has changed. You should replace the key well in advance of upgrading the File Fabric to simplify issue analysis should there be a problem with the new key.
 +</WRAP>
 +
 +
  
 It is recommended to generate new secure keys for the SFTP server. It is recommended to generate new secure keys for the SFTP server.
© Copyright 2024 Nasuni.