View Only
  • 1.  VCSA SFTP Backup Fails when FTP Proxy is set

    Posted Mar 04, 2021 02:24 PM

    Not really a question but a bug and a solution...

    I have run into an issue since installing VCSA build 17491101. We use an HTTP and HTTPS proxy in our environment so this was configured under Networking -> Proxy Settings. This was also configured as an FTP proxy, although this would never be used in practice.

    I then tried to set up SFTP backups under Backup -> Backup Schedule. On trying to submit the form with the settings, this failed immediately with a very generic error along the lines of "General error reported by the backup server". I reviewed /var/log/vmware/applmgmt/applmgmt.log and found the following:





    Turning off the FTP proxy settings resolved this issue. So it looks as though when an FTP proxy is set, the VCSA tries to validate the SFTP credentials via the FTP proxy settings using curl. Since V7 of VCSA the URL scheme has changed from scp:// to sftp:// - my hunch would be that whatever is parsing this URL is matching 'ftp' and treating it as an FTP connection and trying to proxy it. Obviously this will never work - it is my understanding that because at its heart SFTP is based on SSH connectivity, it cannot go through a traditional web proxy... You could issue a CONNECT on port 22 but the vast majority of proxies will not permit that, and I don't know if that's how curl behaves. 

  • 2.  RE: VCSA SFTP Backup Fails when FTP Proxy is set

    Posted Jun 18, 2021 07:25 AM

    Had to do the same as well.

    Strange thing is we have 2 vCenters (, and this problem/bug only occurred on the of them.

  • 3.  RE: VCSA SFTP Backup Fails when FTP Proxy is set

    Posted Sep 25, 2021 03:52 PM

    I don't have ftp proxy set, and still see the curl, but with --noproxy '*' 

    However, the curl seg faults, and the backups fail!