Versions Compared

Version Old Version 1 New Version Current
Changes made by

Deepak Kumar (Deactivated)

Sachin Bhagat

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Objective 

...

Table of Contents
minLevel1
maxLevel6
include
outlinefalse
indent
stylenone
exclude
typelist
class
printabletrue

Objective

This document provides a detailed overview of the Adeptia-managed Karmak FTP server, including its relevance, design, setup, and essential detailskey information.

Karmak FTP Design and Setup

Karmak, a customer of an Adeptia 's AC Cloud servicecustomer, needs to requires the use of traditional FTP because as one of their integrated applications does not support the SFTP protocol. FTP plays a vital role in is integral to the Karmak solution, as facilitating all workflows and transactions depend on FTP for processing.

To address this need, we have set up a traditional FTP system using a Virtual Machine in Azure. The FTP server of choice is WS_FTP, which comes with PostgreSQL embedded as its database.

In this setup, we have acquired the WS_FTP license from Karmak under a "BYOL" model. Additionally, we have painstakingly replicated the settings previously used by Karmak in their legacy AIS system.

Key Information

Attribute

Details

FTP Tool

...

WS_FTP

Hosting

...

Adeptia Hosted VM named

...

"ftpkarmak1"

VM Type

...

Standard B2as v2 (2 vCPUs, 8 GiB memory)

...

Operating System

...

Windows Server 2022 Datacenter

...

Availability Zone

...

East US 2 (Zone 3)

Public IP Address

...

40.75.122.71

Private IP Address

...

10.0.3.5

...

Monitoring Tool

BlueMetador by Connectira

Network Security Group

...

karmak1-bastion-vm-nsg

...

Karmak's entire VNet is permitted.

Allowed IPs for RDP (port 3389)

...

US and India office

...

IPs

Allowed IPs for FTP (port 21)

...

Karmak IPs

...

Outbound

...

Traffic

Default and unrestricted

Karmak's entire VNet

Permitted

...

FTP Storage: 1 An additional disk is attached to VM “ftpkarmak1”the virtual machine named "ftpkarmak1".

Attribute

Details

Disk Name

...

ftpkarmak1_FTP

Storage

...

Type

Premium SSD LRS

Size

...

128

...

GB

Encryption

...

Type

Platform-managed (Microsoft) key

Backup

...

Frequency

Daily

...

Backup Retention

...

1 Month

...

Steps to connect establish a connection to the FTPKarmak1 VM and access the FTP drive, WS_FTP Application, and Database details:

  1. Launch Initiate the "MSTSC" command by typing entering it in the Run dialog and pressing hitting Enter.

  2. Input Enter the Public IP Address of the VM, which is "40.75.122.71", and then click proceed by clicking on Connect.

  3. Use Utilize the credentials stored in "MyGlue" under Password → Karmak → ftpkarmak1, and then click OK.

  4. Navigate Proceed to This PC to view access the FTP Drive (E:).

...

  1. The folder directory structure within this directory is a replica of in this location mirrors the one found present on the Karmak AIS FTP server.

...

  1. Each directory or folder is "NFS mounted" to be utilized within Linux-based AC Cloud containers (Pod).

...

Info

By accessing any Pod Shell in the Karmak Prod or Sanbox namespace within Lens, you can observe the following folder paths: "/mnt/development" for AC Sandbox and "/mnt/production" for AC Production. For detailed instructions on mounting, please refer to the documentation.

...

WS_FTP

...

Server Setup and Configuration

  1. The WS_FTP Server

...

  1. has been deployed on the Virtual Machine “ftpkarmak1” to function as an FTP Server application. The installation and configuration

...

  1. processes strictly adhered to the guidelines provided in the WS_FTP Online Documentation

...

  1. .

...

  2. Additionally,

...

  1. PostgreSQL Version 14

...

  1. has been integrated

...

  1. to serve as

...

  1. the database for this application. This database was automatically installed alongside WS_FTP. All

...

  1. crucial information, including the Master Admin credentials, is securely stored in “PostgreSQL Master Admin” within “MyGlue”.

Key Points

  • License Model:

...

  • The WS_FTP license, provided by Karmak under a "BYOL" (Bring Your License) model, is utilized.

  • License Renewal: This license is renewed annuallyundergoes annual renewal.

    • Current License Activation Date: 11/22/2023

    • License Expiry Date: 11/21/2024 (

    Reminder

    • A reminder is set

    on Google

    • for 1st November 2024).

  • Backup and Setup:

    • The backup from the Karmak AIS FTP setup has been imported

    , and the setup in

    • .

    • The Adeptia-hosted FTP mirrors the AIS setup in terms of folder structure and users.

    • The AIS FTP backup is now operational in the Adeptia-hosted FTP.

    • AIS

    Notifications

    • notifications are active in the Adeptia-hosted FTP.

...

Network Configuration

  • VPN Connection: A site-to-site VPN

...

  • connection has been established with our client Karmak from AC4 in Azure

...

  • .

    • VNG

...

    • Name: karmak1vng

...

    • Connections: karmak1 (Production) and karmak2-dev

...

    • (Non-Production)

    • The Production network is completely

...

    • segregated from the Non-

...

    • Production network, necessitating dual connections.

    • NATing: Implemented within the Production connection (10.0.0.0/20 → 10.100.16.0/20).

...

  • Local Network Gateway: Multiple IP addresses of

...

  • Karmak's partners have been added to the Local Network Gateway (karmak1-lng) to enable Adeptia Hosted AC Connection to FTP Servers.

Accessing WS_FTP

...

  • To locate WS_FTP, search for "WS_FTP

...

Image Removed

...

  • " in the search box within the karmak1 VM.

  • WS_FTP Web Management Console

...

...

...

  • User

...

  • Credentials: Stored in “MyGlue” under the Karmak folder → Karmak_WS_FTP.

Console Access

  • In the console, you can view Host Details, Users, Folders, and

...

  • other relevant information

...

  • . Since

...

  • the settings are imported from the Karmak-hosted WS_FTP

...

  • , it is advised to avoid unnecessary changes and proceed with caution.

  • User Access: Karmak users access WS_FTP via the web console using the following URL: http://10.0.3.5/wsftpsvr/login.asp with the admin@admin user credentials (shared with them).

VPN Connections for Access

  • Non-NATed VPN Connection: http://10.0.3.5/wsftpsvr/login.asp

...

  • NATed VPN Connection: http://10.100.19.5/wsftpsvr/login.asp

This access is necessary crucial for them to regularly update their updating partner data, configuration, folder during configurations, and folders when adding, removing and , or modifying partners.

...

Network Diagram

Image Removed(A network diagram should be included here to visually represent the network setup and connections.)

...

Troubleshooting

Issues: Error in processing with the WSFTP server (Reference Zendesk Ticket: 15198)

To Remove the pasv ports when using PostgreSQL using Product Document link: https://community.progress.com/s/article/Removing-Host-Firewall-Passive-Connection-Settings

  • Logged into the virtual machine (ftpkarmak1).

  • Opened the pgAdmin 4 application.

  • Logged in to the PostgreSQL Master Admin using the master password.

  • Navigated to the database: ws_ftp_server > schemas > public > pasv_ports.

  • Changed the value under the pasv_port column from 21 to an empty value ''

Customer Points of Contact for WS_FTP

...

License Renewal

...