Overview
SFTP Gateway is a secure, pre-configured SFTP server that saves uploaded files to an Amazon S3 bucket.
SFTP Gateway uses a different approach than other S3-based file system products that makes it more reliable for production systems. Rather than using a permanent mount or virtual file system, it monitors file descriptors as new files are written to SFTP directories. Once the file transfer is finished and the file descriptor is closed, it pushes the entire file to an S3 Bucket. MD5 Checksum validation is supported to ensure data integrity of uploaded files.
SFTP Gateway is not intended to be a mirror image of S3. However, it does support read-only download directories that are configurable on a per-user basis.
SFTP Gateway is simple, lightweight, and reliable. It is based on OpenSSH for secure file transfer, giving you the full support of the OpenSSH community for security updates and patches.
When coupled with S3 events and AWS Lambda, SFTP Gateway is the ideal entry point for automated integration between your AWS application and external or third-party systems. It also meets compliance regulations and corporate security policies that require key-based SFTP file transfers.
For High Availability, a web-based user interface, and programmable API, please refer to SFTP Gateway version 2.0 on the AWS Marketplace.
Highlights
- SFTP server that stores uploaded documents to an S3 Bucket. Pre-configured with standard security settings. Easily manage SFTP users independent of IAM using built-in command line scripts.
- Automated S3 bucket creation and setup. Use the CloudFormation template or setup script from the single AMI to auto-configure the server. S3 events can be used to automate file processing with AWS Lambda.
- Server Side Encryption (SSE-S3, SSE-KMS, SSE-C), Private and Shared Download directories that syncs files from S3 to SFTP for download
Details
Typical total price
$0.096/hour
Pricing
Instance type | Product cost/hour | EC2 cost/hour | Total/hour |
---|---|---|---|
t2.micro AWS Free Tier | $0.05 | $0.012 | $0.062 |
t2.small | $0.05 | $0.023 | $0.073 |
t2.medium Recommended | $0.05 | $0.046 | $0.096 |
t2.large | $0.05 | $0.093 | $0.143 |
t2.xlarge | $0.05 | $0.186 | $0.236 |
t2.2xlarge | $0.05 | $0.371 | $0.421 |
t3.micro AWS Free Tier | $0.05 | $0.01 | $0.06 |
t3.small | $0.05 | $0.021 | $0.071 |
t3.medium | $0.05 | $0.042 | $0.092 |
t3.large | $0.05 | $0.083 | $0.133 |
Additional AWS infrastructure costs
Type | Cost |
---|---|
EBS General Purpose SSD (gp2) volumes | $0.10/per GB/month of provisioned storage |
Vendor refund policy
We do not offer refunds, but you may terminate your AMI or Cloudformation Stack at any time.
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
Setup using the CloudFormation template is recommended. If the SFTP Gateway was setup using a single AMI only, then certain AWS resources must be configured after first launching the instance. Login to the SFTP Gateway server using ssh as the ec2-user user with the key you selected when launching the instance.
ssh -i MyPrivateKey.key ec2-user@ip-address
Once logged in, run the following command to setup the S3 bucket and other necessary properties: sudo sftpgatewaysetup
. The EC2 instance that is launched must have an IAM Role that has AmazonS3FullAccess permission for proper setup. Consider launching the SFTP Gateway using the one-click CloudFormation template to avoid any post launch configuration or setup.
The AMI comes preloaded with administration commands to add and delete users.
From the primary ec2-user user account, run the following command to add a new user: sudo addsftpuser username
. Running this command will do the following things:
- Create the new linux user
- Disable the users login shell so they can only sftp and not ssh to the server
- Setup the appropriate home directory for sftp
- Create user's new ssh key
Users can be deleted by running the following command from the primary ec2-user account sudo deletesftpuser username
. The user's account, their ssh key, and their home directory along with everything in it, will be deleted. Be sure to backup the home directory before running this command if you want to keep the files.
Resources
Vendor resources
Support
Vendor support
We offer free email support to SFTP Gateway customers. We also offer paid support plans for in-depth troubleshooting, product customization, and other development services. Please visit https://www.thorntech.com/products/support/ for more info. For support, please contact support@thorntech.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.