3.3.2 Information Required for Registering a Shared Folder

Information Required in the Basic Settings Screen

Item	Required?	Description
Shared folder name	Required	Specify a name within 76 characters to identify the shared folder. You can enter characters (single-byte alphanumeric characters or double-byte characters with UTF-8 encoding). The following characters cannot be used: Single-byte space The following symbols: \/:*?"<>\|=,;[]%+ ".snap", "global", "homes", "printers", "ipc$", "." (one dot), and ".." (two dots) (case insensitive) Character strings starting with "@gmt" (case insensitive) If omitted, the name "SF#nnn" is set. "nnn" indicates a three-digit number starting with 1. "SF#nnn" is displayed as the default value in the input field. "nnn" indicates a 3-digit value that starts with "1". Change this based on the NAS client (e.g. backup software) or the operation.
Datastore name	Required	From the pull-down list, select a datastore name to create a shared folder.
Owner	Optional	Specify the owner of the shared folder. If omitted, "root" is set. Do not specify reserved words for the user name. For information about reserved words for the user name, refer to "2.7.1.2 NAS Access User Settings". When specifying an Active Directory server user, specify it using the "User logon name (pre-Windows 2000)" format.
Group	Optional	Specify the name of the group to which the shared folder belongs. If omitted, "root" is set. Do not specify reserved words for the group name. For information about reserved words for the group name, refer to "2.7.1.1 NAS Access Group Settings". When specifying an Active Directory server group, specify it using the "Group name (pre-Windows 2000)" format. However, do not specify group names containing "@".
Protocol	Optional	Select either NFS or SMB as the protocol. The default selection is NFS.
Activation status	Optional	Select whether to enable the shared folder. If you only want to define the shared folder but not allow access, select "Disable". The default selection is "Enable". For the NFS protocol, if the activation status is changed to "Disable", a mount can be performed using the shared folder name, but the mounted folder cannot be used as a shared folder.

Information Required in the Advanced Settings Screen (When NFS Is Selected for the Protocol)

Item	Required?	Description
NFS allow hosts	Optional	Specify the host information for which NFS access is granted. The following can be specified: FQDN, IPv4 address IPv4 Network (1) FQDN including "" Up to 10 can be specified. To specify multiple values, separate each item with a comma. If more than one item is specified, the priority will differ according to the specified format and order. The highest priority is one and the lowest is three. For items with the same priority, the item described first (left side) has the higher priority. If omitted, all hosts are granted NFS access.
NFS root access allow hosts	Optional	Specify a host to allow root access from the hosts set in "NFS allow hosts". The following can be specified: FQDN, IPv4 address IPv4 Network (1) FQDN including "" Up to 10 can be specified. To specify multiple values, separate each item with a comma. If more than one item is specified, the priority applied will be different according to the specified format and the specified order. For the priority, the highest is one and the lowest is three. In the case of the same priority, the priority of the item described first (left side) is higher. If omitted, root access is not granted for any host. You must set the same string specified for the item in the NFS allow hosts. This is case sensitive. The following specifications are not allowed. NFS allow hosts: *. example.com NFS root access allow hosts: srv01.example.com

Item

Required?

Description

NFS allow hosts

Optional

Specify the host information for which NFS access is granted.
The following can be specified:

FQDN, IPv4 address
IPv4 Network (*1)
FQDN including "*"

Up to 10 can be specified. To specify multiple values, separate each item with a comma.
If more than one item is specified, the priority will differ according to the specified format and order. The highest priority is one and the lowest is three. For items with the same priority, the item described first (left side) has the higher priority.
If omitted, all hosts are granted NFS access.

NFS root access allow hosts

Optional

Specify a host to allow root access from the hosts set in "NFS allow hosts".
The following can be specified:

FQDN, IPv4 address
IPv4 Network (*1)
FQDN including "*"

Up to 10 can be specified. To specify multiple values, separate each item with a comma.
If more than one item is specified, the priority applied will be different according to the specified format and the specified order. For the priority, the highest is one and the lowest is three. In the case of the same priority, the priority of the item described first (left side) is higher.
If omitted, root access is not granted for any host.
You must set the same string specified for the item in the NFS allow hosts. This is case sensitive.
The following specifications are not allowed.

NFS allow hosts: *. example.com
NFS root access allow hosts: srv01.example.com

Information Required in the Advanced Settings Screen (When SMB Is Selected for the Protocol)

Item	Required?	Description
SMB encryption	Optional	Select whether to encrypt the communication. The default selection is "Disable".
Oplocks	Optional	Specify whether the shared folder uses the opportunistic locking feature (Oplocks feature) to avoid conflicts when locking files. The default selection is "Disable".
SMB allow hosts	Optional	Specify the host to which you want to grant access. The following can be specified: FQDN IPv4 Address IP network (1) Domain name starting with "." EXCEPT (2) Up to 10 can be specified. To specify multiple values, separate each item with a comma. If multiple items are specified, the priority of the item described first (left side) is higher. If this setting is omitted, all hosts are granted SMB access. In addition, if the definition of this item and the SMB deny hosts overlap, the specification of this item takes priority (*3).
SMB deny hosts	Optional	Specify the host to deny access to. The following can be specified: FQDN IPv4 Address IPv4 Network (1) Domain name starting with "." EXCEPT (2) Up to 10 can be specified. To specify multiple values, separate each item with a comma. If multiple items are specified, the priority of the item described first (left side) is higher. If this setting is omitted, all hosts are granted SMB access. In addition, if the definition of this item and the SMB allow hosts overlap, the SMB allow hosts specification takes priority (*3).

Note

(*1) Specify an IPv4 network in any one of the following formats:

CIDR notation (prefix notation)
Example: 192.168.10.0/24
Subnet notation
Example: 192.168.10.0/255.255.255.0

(*2) Specify with the "<List 1> EXCEPT <list 2>" format. <List 1>,<list 2> is a space delimited list consisting of one or more of the following items.

FQDN
IPv4 Address
IPv4 Network (*1)
Domain name starting with "."

Of the items specified by <list 1>, allow or reject access from the items specified in <list 2>. There is no limit to the number of characters specified using this format.

Example	SMB allow hosts	SMB deny hosts	Access allowed
1	192.168.10.2	192.168.10.2	192.168.10.2 is accessible (deny hosts settings are ignored)
2	192.168.10.2	192.168.10.1/24	Only 192.168.10.2 is accessible (deny hosts settings are ignored)
3	192.168.10.1/24	192.168.10.2	Accessible from all 192.168.10.1/24 IP addresses (also accessible from 192.168.10.2) (deny hosts settings are ignored)
4	192.168.10.1/24 EXCEPT 192.168.10.2	(None)	Accessible from all 192.168.10.1/24 IP addresses, except for 192.168.10.2
5	(None)	192.168.10.1/24 EXCEPT 192.168.10.2	Not accessible from all 192.168.10.1/24 IP addresses except 192.168.10.2 Accessible from all networks other than 192.168.10.2 and 192.168.10.1/24 non-network access

[Example]

192.168.10.1/24 EXCEPT 192.168.10.2
192.168.0.0/16 EXCEPT 192.168.0.0/24
192.168.0.0/16 EXCEPT 192.168.0.0/24 192.168.1.1
.example1.com EXCEPT host1.example.com host2.example.com
.example1.com .example2.com EXCEPT host1.example.com host3.example.com

This product does not support definitions of nested structures such as "a EXCEPT (b EXCEPT C)".

(*3) A search to determine if access is allowed is performed in order from SMB allow hosts to SMB deny hosts, and ends when an IP address match is found.

Point

To link with the cloud backup script of ETERNUS SF AdvancedCopy Manager, setting the activation status of the shared folder to "Disable" in order to avoid unintended access is recommended. The cloud backup script runs independently of the activation status of the shared folder.