Celerra FTP service questions

i would look at this document and kind of back trace the config

http://www.uccx.net/wp-content/uploads/2012/06/VNX-FTP-TFTP-and-SFTP.pdf

i don't think Celerra will log FTP access by default (maybe there is a way to enable more verbose auditing but i don't know).  The manual should give you pointers where to look for the actual ftp configuration.

That is the problem.  To be blunt the manual is not very helpful.  It isn't giving very good pointers for what I am looking for.

I have looked through that and don't see anything in that pdf telling me where the log files are.  and when I run the server_ftp.... -info command there is nothing in there telling me where the logs files are located.  I have also tried referencing the document titled "using ftp on celerra" and that didn't help either....

There is no extra log file for ftp

Are you sure you actually have ftp enabled ?

By default its off

We might log ftp logins into the data mover log (see server_log) but I’m not sure

Logging – maybe at a specific debug level – you would have to ask customer service if they can find one

You could also do a network trace and filter on ftp

Do you have a /nas/sbin/server_user command ?

Make sure you use the correct manual for your release – ftp has changed a bit over the last years

Yes, ftp services are enabled and running see "server_ftp" output below.  In addition I confirmed with our iseries group that they are ftp'ing to this system and have the account they are logging in with and what directory they are getting/putting data too.  Problem is there is probably a hundred or so processes doing this and they are all not documented "of course".  So it has fail back to me to tell people what is happening with our system and when people are logging on to it with FTP.

Is there anyway we can turn on FTP logging?  Also I cannot get the server_user command to work either I keep getting a command not found error message.  so am assuming I am using the wrong command.  Just can't find the right one to figure out the user home folder stuff too...

server_ftp server_2 -info

server_2 : done

FTPD CONFIGURATION

==================

State                      : running

Control Port               : 21

Data Port                  : 20

Default dir                : /

Home dir                   : disable

Keepalive                  : 1

High watermark             : 65536

Low watermark              : 32768

Timeout                    : 900

Max timeout                : 7200

Read size                  : 8192

Write size                 : 49152

Umask                      : 27

Max connection             : 65535

SSL CONFIGURATION

=================

Control channel mode       : disable

Data channel mode          : disable

Persona                    : default

Protocol                   : default

Cipher                     : default

Control port               : 990

Data port                  : 989

not for ftp protocol, SMB yes

Starting to wish we would have never setup FTP Services to this system.  There is no way to track what is going with it.  I guess I am going to have to resort to network traces...

Got the server_user command to work.  (user error!).

Is it possible to enabling auditing of user accounts to log when they login, what they access, what system they are logging in from?

I am on a NS480 version 6.0.61-0.

i'll open a chat session with support for ya

Ya, that is a problem too. We don't have support for this system anymore either.  So if anyone else knows how to enable some sort of FTP logging I am open to suggestions.

open a ticket with support, they might be able to assist if there is ftp related logging available.

Thanks.