Category
Categories
Sort By

AWS Storage Gateway: A Step-by-Step Guide to Setting Up and Configuring an SMB File Share on EC2

12 / Mar / 2025 by Dipali Sharma 0 comments

AWS Storage Gateway is a service used to connect your on-site storage systems (for example, servers and data centers) to storage on AWS. This means you can store your data in the cloud but still access and manage it as if it were stored locally on your system.

It gives you the advantage of using the cloud’s large storage capacity with cost efficiency, You can quickly access the data you use most often, making it a great solution for businesses that need both the power of the cloud and the convenience of local access.

AWS Storage Gateway has 3 types of gateways:

  1. File Gateway: Lets you store files in Amazon S3 using common file-sharing protocols like NFS and SMB. It’s great for backups, archives, and moving large files to the cloud.
  2. Volume Gateway: Connects local servers to cloud-backed storage volumes.
    • Cached Mode: Keeps frequently used data locally and stores all data in AWS.
    • Stored Mode: Maintains a full data copy on-site with cloud backups.
  3. Tape Gateway: Helps replace physical tape backups by creating virtual tapes stored securely in Amazon S3 or S3 Glacier for long-term storage.
Storage Gateway Architecture

Storage Gateway Architecture

Use Case: Setting up AWS Storage Gateway on an AWS EC2 instance to create an SMB file share and access the S3 (storage) from a Windows client. This setup provides seamless access to cloud storage for legacy applications, reducing infrastructure costs and complexity. It’s ideal for scenarios where cloud storage is needed, but the local file system format must be maintained.

Below are the steps required to set up Storage Gateway to an AWS EC2 instance.

Step 1 – Set Up an Amazon S3 File Gateway

  1. In the AWS Management Console, choose your desired region and click “Create gateway”.

    Create gateway

    Create gateway

  2. Open the “Set up gateway” page. Under Gateway options, select Amazon S3 File Gateway.

    Set Up Gateway

    Set Up Gateway

  3. Under Platform Options, choose Amazon EC2 to  Configure and launch an EC2 instance to host your gateway.
  4. Select the required VPC and subnet. Create the key pair to launch an EC2 machine.
  5. Click on “Launch Instance.”
  6. Select the checkbox to confirm that you have completed the ec2 creation steps for the host platform. (This does not apply to the Hardware appliance platform.)
  7. After the setup is complete, click Next to proceed with connecting your gateway to AWS.

Step 2 – Connect Your Amazon S3 File Gateway to AWS

  1. Complete the procedure described in “Set up an Amazon S3 File Gateway” and select Next to open the “Connect to AWS” page.
  2. For Gateway Connection options, choose how to identify your gateway to AWS. We have two options: IP Address and Activation Key.
    • IP address: Provide the gateway’s IP address.
    • Activation Key: A Unique code for activating the storage gateway.
  3. For Endpoint Options, you again have 2 options.
    • VPC hosted: Communicates through a private connection in your VPC. Provide the VPC endpoint ID or DNS name.
    • Publicly Accessible: When the gateway is set as “publicly accessible,” it means that the gateway can be accessed over the internet.
  4. After configuring the connection, click Next to activate the gateway.

Step 3 – Review Settings and Activate Your Amazon S3 File Gateway

  1. Review the gateway’s details on the “Review and activate” page.
  2. After reviewing the details, click Next to activate the gateway and perform the first-time configuration (disk allocation and logging).

Step 4 – Configure Your Amazon S3 File Gateway

  1. Storage Configuration
    • Configure storage: Allocate at least one local disk with a minimum of 150 GiB to Cache.
  2. CloudWatch Logs Setup
    • Create a new log group: Configure the new log group to monitor the logs of the Storage gateway.
  3. Under CloudWatch Alarms, Create recommended alarms: This automatically creates recommended CloudWatch alarms.
  4. Add required tags to your gateway.
    Cloudwatch alarm

    Cloudwatch alarm

  5. Click Configure to finalize the gateway setup.

Below are the steps required to create the SMB file share.

Step 1 – Steps to Create a SMB File Share.

  1. Log in to AWS Console, go to AWS service Storage Gateway.
  2. Select File shares under your gateway from the left-hand panel, and click Create file share. Click Create file share.
  3. Select SMB as the file share type.
  4. Configure File Share Settings:
    • Gateway: Select the existing gateway(which you have created above) for the file share.
    • File Share Name: Provide a name to your file share.
    • S3 Bucket: Give the S3 bucket name that will be linked to this file share. Select “A bucket in another account” if your bucket is in another account.
    • Under User authentication, choose the authentication method. To use your corporate Microsoft Active Directory, choose Active Directory.
    • Mention all the details below to join AD.
    • Click on “Customize configuration”.
  5. Under Customize configuration, select the Gateway created above.
  6. Select the appropriate CloudWatch log group after enabling the Audit Log.
  7. For “Connection options, ” select Private link.
  8. Enter the VPC endpoint or the DNS name of the endpoint.

    Connection options

    Connection options

  9. After completing the above configurations, proceed further by clicking “Next”.
  10. To manage user access, select “Specific AD-authenticated users or groups” to allow or deny access to particular users or groups. Then proceed with the following steps:
    • Select Add allowed user or Add allowed group, then enter the Active Directory user or group you wish to grant file share access. Repeat this process to add additional users and groups as needed.

      control access

      control access

  11. For Admin users, enter the comma-separated list of Active Directory users and groups. Groups must be prefixed with the @ character, for example, @test.
  12. Under Access type, select one of the following:
    • Select Read/Write, to enable clients to read and write files on the file share.
    • Select Read-only, to allow clients to read files but not write to the file share.
  13. To automate the cache refresh from S3, select “Set cache refresh interval” and set the TTL to 5 minutes.
  14. Select “Next”.

    Addition Items

    Additional Items

  15. Review the file share configuration and choose Edit to modify the settings for any section that you want to change.
  16. When finished, choose Create.

 

FOUND THIS USEFUL? SHARE IT

Tag -

StorageGateway

Leave a Reply

Your email address will not be published. Required fields are marked *

YOU MAY ALSO LIKE

  1. Server-to-server POST request
  2. Increasing the connection timeout between browser and the tomcat server
  3. Installing Oracle 11g on Cloud (EC2 instance RHEL/Centos 6.x) through command line
Glassdoor
Services