Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
shspivey
New Contributor II

Created on ‎07-15-2024 07:27 AM

Automated Backup FTP Error

I am trying to set up automated backup over FTP on my FortiGate firewalls. I have the FTP server set up and running and have confirmed it is accessible through FileZilla. However when I enter the command through CLI I get an error message that I cannot decipher.

 

Here is my command: execute backup full-config ftp [filename] [ftp-server] [username] [pword]

 

And here is the error message I am receiving:

 

Connect to ftp server 10.10.10.100:21 ...
Please wait...
Send config file to ftp server via vdom root failed.
Command fail. Return code 5

 

I have searched but I cannot find anything specific to that error message. There are no entries in the log files on my FTP server, so it appears this error is directly related to the FortiGate.

SHS
SHS
Labels:
1875
0 Kudos
1 Solution
hbac
Staff
Staff

Created on ‎07-15-2024 08:29 AM

Hi @shspivey,

 

Please refer to this article: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Backup-of-configuration-file-from-CLI-usin...

 

You can collect packet captures to see if it is a connectivity issue. 

 

Regards, 

View solution in original post

1842
0 Kudos
9 REPLIES 9
AEK
SuperUser
SuperUser

Created on ‎07-15-2024 07:44 AM

If there no related logs on the FTP server this may mean that the FortiGate couldn't reach the FTP server. Can you ping the FTP server from the FortiGate?

AEK
AEK
1864
0 Kudos
shspivey
New Contributor II
In response to AEK

Created on ‎07-15-2024 08:34 AM

Yes, I should have put that in the comments. I can PING and TELNET from the FortiGate to the FTP server without any issues.

SHS
SHS
1837
0 Kudos
Tumisho715
New Contributor
In response to shspivey

Created on ‎08-31-2024 12:25 PM

Experiencing same issue, not sure if i understand your solution, mind explaining it well for me, sending from FG at site A to FTP server at site B reachable via IPsec , can reach FTP server from site A however getting this error 

 

Please wait...
Send config file to ftp server via vdom root failed.
Command fail. Return code 5

1088
0 Kudos
hbac
Staff
Staff

Created on ‎07-15-2024 08:29 AM

Hi @shspivey,

 

Please refer to this article: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Backup-of-configuration-file-from-CLI-usin...

 

You can collect packet captures to see if it is a connectivity issue. 

 

Regards, 

1843
0 Kudos
shspivey
New Contributor II
In response to hbac

Created on ‎07-15-2024 08:34 AM

Thanks. I will test that now.

SHS
SHS
1836
0 Kudos
shspivey
New Contributor II
In response to hbac

Created on ‎07-15-2024 10:09 AM

I got the sniffer running now and I can packets. What seems odd is the protocol is shown as TCP. I don't get any details on the packets. I am checking to see if I don't have the sniffer configured right. I am running 7.4.3.

 

 

fg40f_sniffer_20240715.png

SHS
SHS
1801
0 Kudos
shspivey
New Contributor II
In response to shspivey

Created on ‎07-15-2024 10:21 AM

I realize now I need to open the pcap file in a program to get the detail. I may have found the problem. I am getting an error on the file save portion.

SHS
SHS
1797
0 Kudos
shspivey
New Contributor II
In response to shspivey

Created on ‎07-15-2024 11:15 AM Edited on ‎07-15-2024 11:16 AM

It turns out the Synology needed a separate setting for the user root directory. That wasn't needed when connecting from FileZilla. When I connected I was directed to the default location for the user account. But when I connected from the FortiGate that default directory connection was not being established. I don't know if this is a Synology issue or FortiGate issue or if they share the problem. But for now I have this resolved.

SHS
SHS
1785
0 Kudos
AEK
SuperUser
SuperUser

Created on ‎07-15-2024 09:14 AM

If your password contains special characters try put it between quotes in the exec backup command.

AEK
AEK
1822
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.