3.3.2 Information Required for Registering a Shared Folder

Information Required in the Basic Settings Screen

Item	Required?	Description
Shared folder name	Required	The name used for identifying the shared folder. You can enter up to 76 characters (single-byte alphanumeric characters or double-byte characters with UTF-8 encoding). The following characters cannot be used: Single-byte space The following symbols: \/:*?"<>\|=,;[]%+ ".snap", "global", "homes", "printers", "ipc$", "." (one dot), and ".." (two dots) (case insensitive) Character strings starting with "@gmt" (case insensitive) If omitted, the name "SF#nnn" is set. "nnn" indicates a three-digit number starting with 1. Change this based on the NAS client (e.g. backup software) or the operation.
Datastore name	Required	The name of the datastore where a shared folder is created. Select a datastore name from the pull-down list.
Owner	Optional	Information regarding the owner of the shared folder. If omitted, "root" is set. When specifying an Active Directory server user, specify it using the "User logon name (pre-Windows 2000)" format.
Group	Optional	The name of the group to which the shared folder belongs. If omitted, "root" is set. When specifying an Active Directory server group, specify it using the "Group name (pre-Windows 2000)" format. However, do not specify group names containing "@".
Protocol	Optional	Select either NFS or SMB as the protocol. The default selection is NFS.
Activation status	Optional	Select whether to enable the shared folder. If you only want to define the shared folder but not allow access, select "Disable". The default selection is "Enable". For the NFS protocol, if the activation status is changed to "Disable", a mount can be performed using the shared folder name, but the mounted folder cannot be used as a shared folder.

Information Required in the Advanced Settings Screen (When NFS Is Selected for the Protocol)

Item	Required?	Description
NFS allow hosts	Optional	Host information for which NFS access is granted. The following can be specified: FQDN, IPv4 address IPv4 Network (1) FQDN including "" Up to 10 can be specified. To specify multiple values, separate each item with a comma. If more than one item is specified, the priority will differ according to the specified format and order. The highest priority is one and the lowest is three. For items with the same priority, the item described first (left side) has the higher priority. If omitted, all hosts are granted NFS access.
NFS root access allow hosts	Optional	Hosts specified in NFS allow hosts and granted root access. The following can be specified: FQDN, IPv4 address IPv4 Network (1) FQDN including "" Up to 10 can be specified. To specify multiple values, separate each item with a comma. If more than one item is specified, the priority applied will be different according to the specified format and the specified order. For the priority, the highest is one and the lowest is three. In the case of the same priority, the priority of the item described first (left side) is higher. If omitted, root access is not granted for any host. You must set the same string specified for the item in the NFS allow hosts. This is case sensitive. The following specifications are not allowed. NFS allow hosts: *. example.com NFS root access allow hosts: srv01.example.com

Item

Required?

Description

NFS allow hosts

Optional

Host information for which NFS access is granted.
The following can be specified:

FQDN, IPv4 address
IPv4 Network (*1)
FQDN including "*"

Up to 10 can be specified. To specify multiple values, separate each item with a comma.
If more than one item is specified, the priority will differ according to the specified format and order. The highest priority is one and the lowest is three. For items with the same priority, the item described first (left side) has the higher priority.
If omitted, all hosts are granted NFS access.

NFS root access allow hosts

Optional

Hosts specified in NFS allow hosts and granted root access.
The following can be specified:

FQDN, IPv4 address
IPv4 Network (*1)
FQDN including "*"

Up to 10 can be specified. To specify multiple values, separate each item with a comma.
If more than one item is specified, the priority applied will be different according to the specified format and the specified order. For the priority, the highest is one and the lowest is three. In the case of the same priority, the priority of the item described first (left side) is higher.
If omitted, root access is not granted for any host.
You must set the same string specified for the item in the NFS allow hosts. This is case sensitive.
The following specifications are not allowed.

NFS allow hosts: *. example.com
NFS root access allow hosts: srv01.example.com

Information Required in the Advanced Settings Screen (When SMB Is Selected for the Protocol)

Item	Required?	Description
SMB encryption	Optional	Select whether to encrypt the communication. The default selection is "Disable".
Oplocks	Optional	Define whether to enable Oplocks (Windows function for improving network efficiency). The default selection is "Disable".
SMB allow hosts	Optional	Host information for which SMB access is granted. The following can be specified: FQDN IPv4 Address IP network (1) Domain name starting with "." EXCEPT (2) Up to 10 can be specified. To specify multiple values, separate each item with a comma. If multiple items are specified, the priority of the item described first (left side) is higher. If this setting is omitted, all hosts are granted SMB access. In addition, if the definition of this item and the SMB deny hosts overlap, the specification of this item takes priority (*3).
SMB deny hosts	Optional	Host information for which SMB access is not granted. The following can be specified: FQDN IPv4 Address IPv4 Network (1) Domain name starting with "." EXCEPT (2) Up to 10 can be specified. To specify multiple values, separate each item with a comma. If multiple items are specified, the priority of the item described first (left side) is higher. If this setting is omitted, all hosts are granted SMB access. In addition, if the definition of this item and the SMB allow hosts overlap, the SMB allow hosts specification takes priority (*3).

Note

(*1) Specify an IPv4 network in any one of the following formats:

CIDR notation (prefix notation)
Example: 192.168.10.0/24
Subnet notation
Example: 192.168.10.0/255.255.255.0

(*2) Specify with the "<List 1> EXCEPT <list 2>" format. <List 1>,<list 2> is a space delimited list consisting of one or more of the following items.

FQDN
IPv4 Address
IPv4 Network (*1)
Domain name starting with "."

Of the items specified by <list 1>, allow or reject access from the items specified in <list 2>. There is no limit to the number of characters specified using this format.

Example	SMB allow hosts	SMB deny hosts	Access allowed
1	192.168.10.2	192.168.10.2	192.168.10.2 is accessible (deny hosts settings are ignored)
2	192.168.10.2	192.168.10.1/24	Only 192.168.10.2 is accessible (deny hosts settings are ignored)
3	192.168.10.1/24	192.168.10.2	Accessible from all 192.168.10.1/24 IP addresses (also accessible from 192.168.10.2) (deny hosts settings are ignored)
4	192.168.10.1/24 EXCEPT 192.168.10.2	(None)	Accessible from all 192.168.10.1/24 IP addresses, except for 192.168.10.2
5	(None)	192.168.10.1/24 EXCEPT 192.168.10.2	Not accessible from all 192.168.10.1/24 IP addresses except 192.168.10.2 Accessible from all networks other than 192.168.10.2 and 192.168.10.1/24 non-network access

[Example]

192.168.10.1/24 EXCEPT 192.168.10.2
192.168.0.0/16 EXCEPT 192.168.0.0/24
192.168.0.0/16 EXCEPT 192.168.0.0/24 192.168.1.1
.example1.com EXCEPT host1.example.com host2.example.com
.example1.com .example2.com EXCEPT host1.example.com host3.example.com

This product does not support definitions of nested structures such as "a EXCEPT (b EXCEPT C)".

(*3) A search to determine if access is allowed is performed in order from SMB allow hosts to SMB deny hosts, and ends when an IP address match is found.

Point

To link with the cloud backup script of ETERNUS SF AdvancedCopy Manager, setting the activation status of the shared folder to "Disable" in order to avoid unintended access is recommended. The cloud backup script runs independently of the activation status of the shared folder.