cancel
Showing results for 
Search instead for 
Did you mean: 
chvgms
Level 7
Report Inappropriate Content
Message 1 of 4

Webgateway backup issue

Hi,

For some reason, backup file upload to FTP server is failing with the below error message though the credentials are correct. I have one more cluster which is working fine with the same credentials.

[02/Jan/2017:18:50:02 IST] Cannot push '/opt/mwg/log/user-defined-logs/backup.log/backup1612090130.log' to 'ftp:// x.x.x.x:21/WebReports/DMZ/backup1612090130- y.y.y.y.log'

Detailed reason(s):

command 'curl --globoff -q --tlsv1 --ciphers 'ALL:!aNULL:!eNULL:!EXPORT:!LOW:!kEDH' -f  --insecure --silent --show-error --connect-timeout 30 --max-time 300 --ftp-create-dirs  --user ftpuser:***** --upload-file /opt/mwg/log/user-defined-logs/backup.log/backup1612090130.log  ftp://x.x.x.x:21/WebReports/DMZ/backup1612090130-y.y.y.y.log' failed with error code 67

Error output is 'curl: (67) Access denied: 530'

SHA1Hash of password is 'e0baa3c6b5e0a1b11c645c9e9ef8f2260a9ec02f'

Verion of both clusters : 7.6.2.5.0

x.x.x.x is the IP of ftp server

y.y.y.y is the IP of the MWG

Thanks,

Sridhar

3 Replies
McAfee Employee mkutrieba
McAfee Employee
Report Inappropriate Content
Message 2 of 4

Re: Webgateway backup issue

Hi chvgms,

With regard to the best practice article “Configuring McAfee Web Reporter log source for McAfee Web Gateway”:

https://community.mcafee.com/docs/DOC-4928#jive_content_id_Common_issues_and_Troubleshooting

The error code 67 stands for mismatching passwords. Therefore, the access is denied.

Maybe the credentials got changed under “Policy” > “Settings” > “File System logging” and aren’t synchronized yet on all cluster members.

You could also have a look at global log file pushing under “Configuration” > “Appliances” > “Log File Manager” if auto pushing is enabled. If yes, disable this option since log file pushing would be configured separately under “Policy” > “Settings” > “File System logging”, e.g. "Access Log Configuration" or "Access Denied Log Configuration".

Further information under:

https://community.mcafee.com/docs/DOC-4928#jive_content_id_Global_Log_File_pushing_configured

Please check this and keep us informed.

Regards,

Marcel

chvgms
Level 7
Report Inappropriate Content
Message 3 of 4

Re: Webgateway backup issue

Hi Marcel,

Backup and browsing reports are going to 2 different servers.

HTTP is used for webreporter which is working fine.

ftp is used for configuration/policy backup and is not working,

McAfee Employee smasnizk
McAfee Employee
Report Inappropriate Content
Message 4 of 4

Re: Webgateway backup issue

Sridhar,

ftp send username and password unencrypted. You can create a TCP dump and check entered credentials and server response.

GUI -> Troubleshooting -> Packet Capture (Parameters: -npi any -s0)

you can use 'host' parameter for tcpdump to filter the communication. Exp. -npi any -s0 host x.x.x.x

-Sergej

ePO Support Center Plug-in
Check out the new ePO Support Center. Simply access the ePO Software Manager and follow the instructions in the Product Guide for the most commonly used utilities, top known issues announcements, search the knowledgebase for product documentation, and server status and statistics – all from within ePO.