Help Center/ Cloud Bastion Host/ User Guide/ System Management/ Data Maintenance/ Configuring an FTP/SFTP Server for Remote Log Backup
Updated on 2024-09-30 GMT+08:00

Configuring an FTP/SFTP Server for Remote Log Backup

To enhance data disaster recovery management and improve audit data security and system scalability, you can back up configuration logs for your bastion host.

This topic walks you through how to configure the FTP or SFTP server for remote log backup.

Constraints

  • After remote backup is enabled, the system backs up the system data of the previous day at 00:00 every day by default.
  • Logs are automatically backed up on a daily basis and uploaded to the corresponding folder on the FTP or SFTP server.
  • Logs of the same day cannot be backed up repeatedly in the same server path.
  • System configuration and session playback logs can be remotely backed up to the FTP or SFTP server.

Prerequisites

You have the management permissions for the System module.

Procedure

  1. Log in to your bastion host.
  2. Choose System > Data Maintain > Log Backup.
  3. In the Backup to the FTP/SFTP server area, click Edit. In the displayed dialog box, complete required parameters.

    Table 1 Parameters for configuring the FTP or SFTP server

    Parameter

    Description

    Status

    Whether to back up data to the FTP or SFTP server (default: ).

    • : Remotely backing up logs to an FTP or SFTP server is enabled. The system automatically starts backup at 00:00 every day.
    • : Remotely backing up logs to an FTP or SFTP server is disabled.

    Protocol

    Protocol over which logs are transferred for backing up

    • The options are FTP and SFTP.

    Server IP

    IP address of the FTP or SFTP server.

    Port

    Port number of the FTP or SFTP server.

    Username

    Username on the FTP or SFTP server to test whether the FTP or SFTP server is reachable.

    Password

    Password of the username on the FTP or SFTP server to test whether the FTP or SFTP server is reachable.

    Storage Path

    Path where the logs are stored.

    • The path must start with a period (.). For example, if the path is ./test/abc, the absolute path is /home/username/test/abc.
    • If this parameter is left empty, the backup content is stored in the home directory of the FTP or SFTP server user, for example, absolute path /home/username.

    Test connectivity

    Tests whether the configured FTP or SFTP server is reachable.

    • It checks only the network status between the bastion host and the FTP or SFTP server. The user account of the server is not verified.

    Backup Content

    Select at least one type of logs to be backed up.

    • System configuration
    • Session recording playback log
    • System logon log
    • Resource logon log
    • Command operation log
    • File operation log
    • Two-person authorization log

  4. Click OK. You can then view the backup information on the Log Backup tab.

    After the configuration is complete, the system backs up the data of the previous day at 00:00 every day and uploads the data to the remote FTP or SFTP server.

Follow-up Operations

  • To back up the logs of a certain day immediately, start the remote backup immediately.

    In the Backup to FTP/SFTP server area, select the date of the logs to be backed up and click Backup.

  • To disable the FTP or SFTP server backup, click Edit. In the displayed dialog box, set Status to Disabled.
  • To view or download logs backed up to the FTP or SFTP server, log in to the FTP or SFTP server.