Skip to main content
Versa Networks

Manage Files and Folders

  1. Last updated
  2. Save as PDF

Versa-logo-release-icon.pngFor supported software information, click here.

You can upload files from your local system to the Director node and then push those files to multiple Versa Operating SystemTM (VOSTM) devices. Before you upload the files, you select the organization that contains the VOS devices that need to access the uploaded files. To push the uploaded files to the organization's appliances, you need to commit the revised template to the VOS devices.

This article describes how to upload various types of files to a Director node, and and how to create and manage folders for these files.

Enable File Transfer

Before you can upload and manage files, you must enable file transfer on the VOS device. To do this, go to the shell on the Director node, and then issue the following commands to check whether the SECURITY_FILE_TRANSFERS parameter is set to true in the vnms.proprties files, as shown in the example below. 

admin@Director$ grep SECURITY_FILE_TRANSFERS /opt/versa/vnms/etc/conf/vnms.properties
SECURITY_FILE_TRANSFERS=true

admin@Director$ grep SECURITY_FILE_TRANSFERS /var/versa/vnms/data/conf/vnms.properties
SECURITY_FILE_TRANSFERS=true

If the output shows that SECURITY_FILE_TRANSFERS=false in either of the files, edit the file and set SECURITY_FILE_TRANSFERS=true.

For information on how to access the shell on the Director node, see Access the Versa CLI

Manage Files and Folders

To manage files and folders:

  1. In Director view, select the Administration tab in the top menu bar.
  2. Select Files and Folders in the left menu bar.

    files-and-folders-main.png
     
  3. From here, you can upload the following types of files: DLP, Certificates, Captive Portal, IPS, PAC, Address, and URL Match. See the sections below for each category. 

DLP Files for EDM and Document Fingerprinting

Exact data match (EDM) and document fingerprinting are part of data loss prevention (DLP). When you configure rules for EDM and document fingerprinting, you can upload files that contain the custom data patterns to be matched.

You upload files that are used by EDM and document fingerprinting into a folder named DLP. The DLP folder contains two folders: 

  • EDM folder—You upload files directly into this folder. You cannot create new subfolders in it.
  • Fingerprint folder—You must first create a subfolders to contain the files to be fingerprinted, and then you upload files to the subfolder. 

To manage the files and folders for EDM and document fingerprinting:

  1. In Director view, select the Administration tab in the top menu bar.
  2. In the Organization field, select the organization that contains the VOS devices that need to access the uploaded files.
  3. Select Files and Folders > DLP in the left menu bar. The following screen displays.

    DLP-files-folders-dashboard-border.png
  4. Click the expand-chevron-icon-22.png Expand icon to the left of the DLP folder to display the folders in the DLP folder.
  5. To upload files for EDM processing:
    1. Highlight the EDM row, and then click the Add Files icon in the Action column.

      DLP-EDM-add-files-action-border.png
       
    2. In the Add File popup window, enter information for the following fields.

      DLP-EDM-add-add-file-border.png
       
      Field Description
      Choose File Click to upload from your local system. The file must be in CSV format.
      Enable Hashing

      Click to hash the file that is being uploading using the SHA-256 algorithm. Hashing is the default. If you disable hashing, you can hash the file using any one-way hash utility tool before uploading it. 

      Default: Enabled
  6. To upload files for document fingerprinting:
    1. Highlight the Fingerprints row, and then click the Add Folders icon in the Action column.

      DLP-fingerprinting-add-folders-action-border.png
    2. In the Add Folders popup window, enter a name for the new folder, and then click OK to create the new folder.

      DLP-fingerprinting-add-folder-border.png
    3. Highlight the new folder, and then click the Add Files icon in the Action column.
    4. In the Add File popup window, enter information for the following fields.

      DLP-EDM-add-add-file-border-2.png
       
      Field Description
      Choose File Click to upload from your local system. The file must be in CSV format.
      Enable Hashing

      Click to hash the file that is being uploading using the SHA-256 algorithm. Hashing is the default. If you disable hashing, you can hash the file using any one-way hash utility tool before uploading it. 

      Default: Enabled
  7. After you have uploaded the files, click Commit Template to push the template configuration to the devices.

    DLP-files-folders-dashboard-commit-template-border.png

Certificate Files

A certificate authority is a trusted entity that issues a CA certificate, which verifies a digital entity’s identity on the internet. A private key is required to access secured traffic using a certificate. To secure the traffic on a VOS device, you can use either a self-signed CA certificate or a trusted CA certificate. A certificate chain is an ordered list of certificates, containing an SSL/TLS certificate and CA certificates, that allow the receiver to verify that the sender and all CA's are trustworthy.

You upload the files containing the CA certificate, the CA chain, and the private key into three folders:

  • CA Certificate
  • CA Chain
  • Private Key

To upload certificate files and and to manage the certificate folders:

  1. In Director view, select the Administration tab in the top menu bar.
  2. In the Organization field, select the organization that contains the VOS devices that need to access the uploaded files.
  3. Select Files and Folders > Certificates in the left menu bar. The following screen displays.

    certificate-main-folder.png
  4. Click the expand-chevron-icon-22.png Expand icon to the left of Certificates to display the default subfolder in the Certificates folder.
  5. To upload a CA certificate, select the CA Certificate row, and then click the add-files-icon.png Add Files icon in the Actions column.
  6. In the Add File popup window, enter information for the following fields.

    certificates-add-file-border.png
     
    Field Description
    Choose File Click to upload a CA certificate file from your local system. The CA certificate file must be in .zip format.
    Name

    Enter a name for the CA certificate file.
    Pass Phrase Enter a password. It can be up to 63 characters.
    CA Chain Select a CA chain.
  7. Click OK.
  8. To upload a CA chain, select the CA Chain row, and then click the add-files-icon.png Add Files icon in the Actions column.
  9. In the Add Files popup window, enter information for the following fields.

    certificates-add-CA-chain file-border.png
     
    Field Description
    Choose File Click to upload a CA chain file from your local system. The file must be in .cer, .crt, or .pem format.
    Name

    Enter a name for the CA chain file.
  10. Click OK.
  11. To upload a private key, select the Private Key row, and then click the add-files-icon.png Add Files icon in the Actions column. In the Add Files popup window, enter information for the following fields. Note that private key files must be in .key or .pem format.

    add-files-private-key.png
     
    Field Description
    Choose File Click to upload a private key file from the local system. The file must be in .key or .pem format.
    Name (Required)

    Enter a name for the private key file.
    Pass Phrase Enter a password. It can be up to 63 characters.
  12. After you have uploaded the certificate files, click Commit Template to push the template configuration to the devices.

    certificate-main-folder-commit.png

Captive Portal Files

For captive portal, you can upload files that contain the text for a custom captive portal page and associate them with the Ask, Block, and Justify actions. You can upload different files for each action.

You must compress the files for the captive portal webpage into a .zip file. The main index file in the .zip file must be named index.htm, and it must contain the custom captive portal page HTML files, CSS files, and image files. You can use the following variables in the index.htm file:

  • $category—Display the URL category to which the URL belongs.
  • $host—Display the IP address of the client machine.
  • $message—Display a message to the user.
  • $reputation—Display the reputation of the URL.
  • $url—Display the URL that the user is attempting to access.
  • $user—Display the name of the user.

For more information, see Configure Captive Portal.

To manage files and folders for captive portal:

  1. In Director view, select the Administration tab in the top menu bar.
  2. In the Organization field, select the organization that contains the VOS devices that need to access the uploaded files.
  3. Select Files and Folders > Captive Portal in the left menu bar. The following screen displays.

    Captive-Portal-lef-nav-border.png
  4. To configure a captive portal category for the Ask, Block, or Justify action, click the edit-pencil-icon-black-on-white-22-v2.png Edit icon in the Ask, Block, or Justify box. In the Add Captive Portal popup window, select Ask, Block, or Justify in the Category field.

    add-captive-portal-blank-border.png
  5. In the Category field, select a category:
    1. If you select Default, click OK.
    2. If you select Custom, the following screen displays. Enter a custom message, and then click OK.

      add-captive-portal-custom-category-border.png
    3. If you select File, the following screen displays. Click Choose File to upload a captive portal file in .zip format from your local system, and then click OK.

      add-captive-portal-file-category-border.png
  6. After you have uploaded the captive portal files, click Commit Template to push the template configuration to the devices.

    Captive-Portal-commit-template-border.png

IPS Signature Files

An intrusion prevention system (IPS) signature file contains vulnerability rules. You can import and use your own custom IPS signatures to use in vulnerability profiles. For more information, see Configure Custom Vulnerability IPS Signatures.

To upload an IPS signature file:

  1. In Director view, select the Administration tab in the top menu bar.
  2. In the Organization field, select the organization that contains the VOS devices that need to access the uploaded files.
  3. Select Files and Folders > IPS in the left menu bar. The following screen displays.

    ips-main.png
  4. Highlight the IPS row, and then click the add-files-icon.png Add Files icon in the Action column.

    highlight-ips.png
  5. In the Add File popup window, click Choose File and select a file to upload from your local system. The file must be in .zip or .rules format.

    add-file-ips.png
  6. Click OK.
  7. After you have uploaded the files, click Commit Template to push the template configuration to the devices.

    ips-template.png

PAC Files

A proxy autoconfiguration (PAC) file defines how web browsers and other user agents can automatically choose the appropriate proxy server to fetch a given URL.

To upload PAC files:

  1. In Director view, select the Administration tab in the top menu bar.
  2. In the Organization field, select the organization that contains the VOS devices that need to access the uploaded files.
  3. Select Files and Folders > PAC in the left menu bar. The following screen displays.

    pac-main.png
  4. Highlight the PAC row, and then click the add-files-icon.png Add Files icon in the Action column.

    highlight-pac.png
  5. In the Add File popup window, click Choose File and select a file to upload from your local system. The file must be in .pac format.

    add-file-pac.png
  6. Click OK.
  7. After you have uploaded the files, click Commit Template to push the template configuration to the devices.

    pac-template.png

Address Files

When you want to configure policy for groups of IP address, you can upload files that contain the addresses so that you do not have to configure these objects individually. You can use the address files to block (deny list) or allow (accept list) an IP address or a group of IP addresses. 

The IP addresses in the file must be in CSV format, with each entry formatted as follows: name, type, value, where name is the name of the address list. type is the type of address and can be one of the following strings: IPv4-prefix, IPv4-range, IPv6-prefix, or IPv6-range. value is the IP address, subnet mask, or range. For more information, see Configure Address Objects

To upload address files:

  1. In Director view, select the Administration tab in the top menu bar.
  2. In the Organization field, select the organization that contains the VOS devices that need to access the uploaded files.
  3. Select Files and Folders > Address Files in the left menu bar. The following screen displays.

    address-main.png
  4. Highlight the Address Files row, and then click the add-files-icon.png Add Files icon in the Action column.

    actions-address-file.png
  5. In the Add File popup window, click Choose File and select a file to upload from your local system. The file must be in .csv format.

    add-file-address.png
  6. Click OK.
  7. After you have uploaded the files, click Commit Template to push the template configuration to the devices.

    address-template.png

URL Match Files

You can upload a file of URLs and URL reputations to reference when you configure a URL category object so that you do not have to enter them individually. To use a file when you are configuring URL category objects, you create a CSV file and then upload it.

When you want to configure policy for URL categories and reputations objects, you can upload files that contain the URL information so that you do not have to configure these objects individually.

To upload certificate files and and to manage the certificate folders:

  1. In Director view, select the Administration tab in the top menu bar.
  2. In the Organization field, select the organization that contains the VOS devices that need to access the uploaded files.
  3. Select Files and Folders > URL Match Files in the left menu bar. The following screen displays.

    url-match-main.png
  4. Highlight the URL Match Files row, and then click the add-files-icon.png Add Files icon in the Action column.

    highlight-url-match.png
  5. In the Add File popup window, click Choose File and select a file to upload from your local system. The file must be in .csv format.

    add-file-address.png
  6. Click OK.
  7. After you have uploaded the files, click Commit Template to push the template configuration to the devices.

    url-match-template.png

Supported Software Information

Releases 22.1.3 and later support all content described in this article, except:

  • Release 22.1.4 adds support for uploading IPS files, PAC files, address files, and URL match files.