search cancel

Requirements to make secure (FTPS) connection from Proxy to Reporter to upload Access Logs

book

Article ID: 173862

calendar_today

Updated On:

Products

Reporter Reporter-S500 Reporter-VA

Issue/Introduction

Upload Access logs to Reporter 10 (FTPS)

OR

Enable FTPS on Proxy to upload logs to Reporter 10
 

Resolution

Login to Reporter Management Console

1)create new user (not admin user)               Note: Users with admin rights cannot be used for FTPS.
2)enable ftps with above new user
3)change port for ftps as proxy doesn't accept port 990 for ftps.  Note: Port 990 is reserved for implicit TLS communication and is unsupported by Blue Coat ProxySG
4)create new db
5)create new logsource
a)local log source with a new folder on reporter.
6)connect to reporter via ssh
7)enter enable mode
8)run command show ssl certificate default
9)copy from beginning to end.
10)connect to your proxy
11)go to configuration-ssl- CA Certificates
12)click import
13)name it whatever you can remember
14)paste ssl default from step 9.
15)click ok.
16)go to configuration-ssl- CA Certificates- CA Certificate Lists
17)click on 'browser-trusted' and then 'edit'
18)find name from step 13, and highlight
19)click on 'add' then 'ok'
20)click on 'apply'
21)go to access logging-upload client
22)change client type to "ftp client"
23)click on settings
24)add reporter ip to "host name" and change port to step #3 configured port
25)add path created in step #5
26)add user name created in step #1
27)change primary password to user password from step #1
28)check box for "use secure connections (ssl)"
29)click 'ok'
30)click 'apply'
31)click test upload

proxy
statistics-system-event logging
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: USER ftp" 0
E0000:96 alog_ftp_client.cpp:464
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: 331 Please
specify the password." 0 E0000:96 alog_ftp_client.cpp:1720
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: PASS *****" 0
E0000:96 alog_ftp_client.cpp:611
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: 230 Login
successful." 0 E0000:96 alog_ftp_client.cpp:1720
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: CWD
/kait_proxy" 0 E0000:96 alog_ftp_client.cpp:772
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: 250 Directory
successfully changed." 0 E0000:96 alog_ftp_client.cpp:1720
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: TYPE I" 0
E0000:96 alog_ftp_client.cpp:690
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: 200 Switching
to Binary mode." 0 E0000:96 alog_ftp_client.cpp:1720
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: PASV" 0
E0000:96 alog_ftp_client.cpp:1017
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: 227 Entering
Passive Mode (10,131,9,0,117,75)." 0 E0000:96 alog_ftp_client.cpp:1720
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: Creating data
socket to 10.131.9.0:30027" 0 E0000:96 alog_ftp_client.cpp:1131
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: STOR
main_upload_result" 0 E0000:96 alog_ftp_client.cpp:1306
2018-10-08 15:16:01-06:00MDT "Access Log FTP (main):Test Upload: 150 Ok to send
data." 0 E0000:96 alog_ftp_client.cpp:1720
2018-10-08 15:16:02-06:00MDT "Access Log FTP (main):Test Upload: 226 Transfer
complete." 0 E0000:96 alog_ftp_client.cpp:1720
2018-10-08 15:16:02-06:00MDT "Access Log FTP (main):Test Upload: QUIT" 0
E0000:96 alog_ftp_client.cpp:1608
2018-10-08 15:16:02-06:00MDT "Access Log FTP (main):Test Upload: 221 Goodbye."
0 E0000:96 alog_ftp_client.cpp:1720
should be shown.

on reporter ssh
localhost> en
Password:
localhost# access-logs list-files abc_proxy
total 4
-rw-rw---- 1 rpt_data rpt_data 811 Oct 8 21:16 main_upload_result
<where abc_proxy is should be dir you created in above step #5a>