Using SCP (Secure Copy) client option to upload access logs from ProxySG to storage server
This feature is available from 18.104.22.168 and upcoming release of 6.6.x
ProxySG should be able to reach the server on port 22 (or the port in which access log is expected)
Only periodic upload can be configured using SCP client option. Continuous upload will not work when SCP Client is selected
Steps to configure
Login to Web Console of ProxySG and navigate to Configuration [Tab] > Authentication > SSH Outbound Connections > Known Hosts [Tab]
Click on New … and New Host Key window will open up. Here we are given options to either paste the Host Key if already have it. Recommended is to use the Fetch host key option to add it.
For this example, we will use the Fetch option. Give the IP Address or the Hostname of the server in the Host name: box and click Fetch button. You will be presented with a Fetch Host Key confirmation page as below
One may verify the key with server and click on Add button. This will add the server host key to the Known Hosts list.
Now navigate to Configuration [Tab] > Access Logging > Logs > Upload Client [Tab]
Select the log file from the Log: drop down menu for which the SCP upload need to be set. For this example, we are setting for main log file
Select the Client Type: as SCP Client. Click on Settings button next to this
Configure the server details as given in the Known Hosts setting.
Set the user account information of the SCP server which will be used for uploading logs. Change the Upload path: if the logs need to be stored on a subdirectory of the user’s home directory. Keep this blank if the logs need to be stored in the home directory itself. Click OK
Click Apply to save the changes to the log upload client.
Additionally go to Upload Schedule [Tab] to set the periodic upload settings