If you have completed whitelisting requirements and you want to test SFTP Client connection to CFT intranet, follow the steps in this section.
-
Use the following endpoint values.
Zone Authentication Method Endpoint Intranet SSH Key Only sftp.in.cft.stack.gov.sgIntranet SSH Key and Password sftp-pw.in.cft.stack.gov.sg -
Use any of the following supported SFTP Clients:
- OpenSSH (macOS and Linux)
- WinSCP (Microsoft Windows only)
- Cyberduck (Windows, macOS, and Linux)
- FileZilla (Windows, macOS, and Linux)
- Tectia Version 6.5.1 (Microsoft Windows only)
- OpenSSH (macOS and Linux)
To perform firewall rules testing, enter the following commands using your SFTP client command prompt:
-
First, enter these commands to resolve CFT SFTP FQDN through WOG DNS server.
nslookup {endpoint}nslookup {endpoint} 10.120.1.103 (forwarder)nslookup {endpoint} 10.122.1.103 (forwarder)Refer to the endpoint values.
Expected result
Verify that you get the following expected result.
-
For SSH only:
Non-authoritative answer: Name: sftp.in.cft.stack.gov.sg Addresses: 10.211.0.134 10.211.0.157 -
For SSH + password:
Non-authoritative answer: Name: sftp-pw.in.cft.stack.gov.sg Addresses: 10.211.0.138 10.211.0.155
-
-
Enter the following command to test the connection to the CFT SFTP server.
telnet <CFT SFTP server IP address> 22If the connection fails, you will see an error message indicating the reason.
-
Alternatively, you may also use
sftpto test the connection to the CFT SFTP server.sftp <cft_sftp_server_hostname>:22If the connection is successful, you will see response from our server, e.g., permission denied or a password prompt.
If the connection is not successful, you will get a timeout.