- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- Re: backup via ftp
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
backup via ftp
Dear, i want to configure a schedule backup of my HA firewall 100F .
I tried to exe this command via cli
execute backup config ftp /backupFW/backup_%date%.cfg 10.10.X.X backupfw test1
but i have this error:
Send config file to ftp server via vdom root failed
Command fail. Return code 12
I tested the ftp account with filezilla and i can log on the Ftp Server and the user had the RW permession on the ftp folder .
thanks
Antonio
Labels:
- Labels:
-
FortiGate
8 REPLIES 8
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello @tp-italia,
Could you please confirm if it is a new setup or was it working before.
The error message you received indicates that there was a problem sending the configuration file to the FTP server.
Check the firewall settings on both the FortiGate and the FTP server to ensure that FTP traffic is allowed.
Verify that the FTP username and password are correct and have the necessary permissions to write to the backup folder.
Verify that the backup folder exists and has the correct permissions.
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-send-automated-backups-of-the-confi...
Backup of configuration file from CLI using FTP
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Backup-of-configuration-file-from-CLI-using-FTP/ta-p/212891
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Pavankr5, this is a new setup for ftp service .
But i Resolve it with TFTP and not with FTP .
Is there a way to add the date to the file?
thanks
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi,
If I recall corectly, manually setting that variable and executing the script won't display the date, you would need to create a automation task and it will be good.
geek
geek
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
ok thanks
Created on 05-15-2023 11:33 AM Edited on 05-15-2023 11:36 AM
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Indeed, put date/time into the back up file names you can only via automation stitches, not a regular scheduled back up.
Here is such a stitch:
- Create a scheduled trigger, here it is 2 Am (at night) every day:
condfig sys automation-trigger
edit "ScheduledBackup_trigger"
set trigger-type scheduled
set trigger-hour 2
set trigger-minute 0
next
end
- Next, create action of backing up. Here,
- 10.10.10.13 - SFTP server to back up to (change to ftp if you'd like)
- fgtbackup/fgPW39--7 - SFTP server username/password
- fgtconfig-%%date%%-%%time%%.conf - Back up file name pattern
config sys automation-ation
edit "ConfigBackupOnChange"
set action-type cli-script
set script " exe backup config sftp fgtconfig-%%date%%-%%time%%.conf
10.10.10.13 fgtbackup fgPW39--7"
set accprofile "super_admin"
next
end
- Now, tie it all together:
config sys automation-stitch
edit "BackUpDaily"
set trigger "ScheduledBackup_trigger"
config actions
edit 1
set action "ConfigBackupOnChange"
set required enable
next
end
next
end
As the result, the back up files on the SFTP server will look like:
# ls -1
fgtconfig-2023-03-14-02:01:49.conf
fgtconfig-2023-03-14-02:01:15.conf
HTH
Regards
Yuri https://yurisk.info/ blog: All things Fortinet, no ads.
Yuri https://yurisk.info/ blog: All things Fortinet, no ads.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Yurisk,
I am using version 7.0.12 and everything works perfectly except the variables in the filename, I have tried all of these and none of them work.
%%log.time%%
%%log.date%%
%%log.devid%%
%%log.devname%%
%%date%%%
%%time%%%
%%devid%%%
%%deviceid%%
Do you know how I can know the variables used by this version?
Thanks.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello,
Today a project for FortiGate config backup via ftp needed this %%date%%% so we tried backup from the cli and the result on the ftp server what FGT_Config-%%date%%%.conf. After a short check on the forums we found no solution for this issue. At the end we tried running our automation stitch and the variable %%date%%% worked. Try running the script in automation stitch with super-admin and will work. Our FortiGate cluster has version 7.0.13.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hello,
The command "execute backup config ftp backup.cfg 10.10.X.X backupfw test1" will generate a configuration backup file in the directory which is set in the FTP server. However the command "execute backup config ftp /backupFW/backup_%date%.cfg 10.10.X.X backupfw test1" will generate the backup in the directory /backupFW
If there is no directory with such name the server will respond with the error.
Either you can create a directory /backupFW in which the configuration backup will be saved or you can remove the path so that the backup will be saved in the current directory which is configured in the FTP server.
BR
Related Posts
- FortiMangaer and FGT Hub migration issues... 37 Views
- Root Cause of Red Down Arrow... 76 Views
- Forti backups to Azure blob 276 Views
- How to Migrate VLANs to Virtual... 247 Views
- Fortigate backup problems - Same command,... 201 Views
Labels
-
FortiGate
6,450 -
FortiClient
1,287 -
5.2
801 -
5.4
639 -
FortiManager
563 -
6.0
416 -
FortiAnalyzer
411 -
5.6
362 -
FortiSwitch
331 -
FortiAP
327 -
FortiClient EMS
259 -
6.2
251 -
FortiMail
239 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
148 -
6.4
128 -
FortiNAC
103 -
FortiGuard
102 -
FortiGateCloud
86 -
FortiSIEM
85 -
FortiCloud Products
82 -
FortiToken
69 -
Customer Service
69 -
IPsec
66 -
4.0MR3
64 -
Wireless Controller
58 -
SSL-VPN
54 -
FortiProxy
44 -
FortiADC
42 -
Fortivoice
41 -
FortiEDR
38 -
FortiGate v5.4
34 -
FortiDNS
34 -
FortiExtender
31 -
FortiSandbox
30 -
FortiSwitch v6.4
28 -
FortiConnect
23 -
SD-WAN
23 -
FortiWAN
22 -
FortiConverter
21 -
High Availability
20 -
Firewall policy
20 -
VLAN
18 -
FortiPortal
17 -
FortiSwitch v6.2
16 -
FortiGate v5.2
16 -
ZTNA
15 -
FortiMonitor
14 -
Certificate
14 -
FortiDDoS
13 -
Routing
12 -
FortiCASB
12 -
SAML
11 -
DNS
11 -
Interface
11 -
BGP
10 -
FortiGate v5.0
10 -
FortiRecorder
10 -
VDOM
10 -
FortiWeb v5.0
9 -
LDAP
9 -
FortiManager v5.0
9 -
4.0MR2
9 -
Logging
9 -
RADIUS
8 -
Traffic shaping
8 -
Virtual IP
8 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
fortilink
7 -
FortiAnalyzer v5.0
7 -
NAT
7 -
FortiAuthenticator
7 -
Admin
7 -
FortiGate v4.0 MR3
7 -
4.0
7 -
Fortigate Cloud
6 -
IP address management - IPAM
6 -
SSID
5 -
Security profile
5 -
Traffic shaping policy
5 -
Authentication
5 -
FortiBridge
5 -
SNMP
5 -
SSO
5 -
Application control
5 -
Static route
5 -
FortiManager v4.0
5 -
FortiDirector
4 -
SSL SSH inspection
4 -
WAN optimization
4 -
Web application firewall profile
4 -
DNS Filter
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
Proxy policy
4 -
packet capture
3 -
FortiToken Cloud
3 -
Automation
3 -
Intrusion prevention
3 -
DoS policy
3 -
FortiTester
3 -
Port policy
3 -
FortiDB
3 -
IPS signature
3 -
FortiDeceptor
2 -
FortiInsight
2 -
Antivirus profile
2 -
VoIP profile
2 -
Traffic shaping profile
2 -
Web profile
2 -
FortiAP profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Netflow
2 -
trunk
2 -
NAC policy
1 -
SDN connector
1 -
4.0MR1
1 -
Users
1 -
Subscription Renewal Policy
1 -
FortiCWP
1 -
FortiNDR
1 -
Web rating
1 -
Application signature
1 -
Authentication rule and scheme
1 -
Multicast routing
1 -
Zone
1 -
FortiManager-VM
1 -
Fabric connector
1 -
Internet Service Database
1 -
Fortinet Engage Partner Program
1 -
System settings
1 -
Explicit proxy
1 -
TACACS
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.