Configuring an FTP/SFTP Server for Remote Log Backup
To enhance data disaster recovery management and improve audit data security and system scalability, you can back up configuration logs for your bastion host.
This topic walks you through how to configure the FTP or SFTP server for remote log backup.
Constraints
- After remote backup is enabled, the system backs up the system data of the previous day at 00:00 every day by default.
- Logs are automatically backed up on a daily basis and uploaded to the corresponding folder on the FTP or SFTP server.
- Logs of the same day cannot be backed up repeatedly in the same server path.
- System configuration and session playback logs can be remotely backed up to the FTP or SFTP server.
Prerequisites
You have the management permissions for the System module.
Procedure
- Log in to your bastion host.
- Choose System > Data Maintain > Log Backup.
- In the Backup to the FTP/SFTP server area, click Edit. In the displayed dialog box, complete required parameters.
Table 1 Parameters for configuring the FTP or SFTP server Parameter
Description
Status
Whether to back up data to the FTP or SFTP server (default: ).
- : Remotely backing up logs to an FTP or SFTP server is enabled. The system automatically starts backup at 00:00 every day.
- : Remotely backing up logs to an FTP or SFTP server is disabled.
NOTE:After this function is enabled, the system backs up the data of the previous day at 00:30 every day. Password change logs are backed up in real time. The system will send backup to the remote FTP/SFTP server.
Protocol
Protocol over which logs are transferred for backing up
- The options are FTP and SFTP.
Server IP
IP address of the FTP or SFTP server.
Port
Port number of the FTP or SFTP server.
Username
Username on the FTP or SFTP server to test whether the FTP or SFTP server is reachable.
Password
Password of the username on the FTP or SFTP server to test whether the FTP or SFTP server is reachable.
Storage Path
Path where the logs are stored.
- The path must start with a period (.). For example, if the path is ./test/abc, the absolute path is /home/username/test/abc.
- If this parameter is left empty, the backup content is stored in the home directory of the FTP or SFTP server user, for example, absolute path /home/username.
Test connectivity
Tests whether the configured FTP or SFTP server is reachable.
- It checks only the network status between the bastion host and the FTP or SFTP server. The user account of the server is not verified.
Backup Content
Select at least one type of logs to be backed up.
- System configuration
- Session recording playback log
- System logon log
- Resource logon log
- Command operation log
- File operation log
- Two-person authorization log
- Click OK. You can then view the backup information on the Log Backup tab.
After the configuration is complete, the system backs up the data of the previous day at 00:00 every day and uploads the data to the remote FTP or SFTP server.
Follow-up Operations
- To back up the logs of a certain day immediately, start the remote backup immediately.
In the Backup to FTP/SFTP server area, select the date of the logs to be backed up and click Backup.
- To disable the FTP or SFTP server backup, click Edit. In the displayed dialog box, set Status to Disabled.
- To view or download logs backed up to the FTP or SFTP server, log in to the FTP or SFTP server.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot