SPHINX_DOCU: q-doc/intro/net.rst@ccfe3c7fa0d2 (annotated)

0 bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	1	-------
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	2	Network
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	3	-------
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	4
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	5	New Switches :
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	6	2 x DELL N1548 Gbit/s Switch 48 Port
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	7	2 x DELL N4064F 10 Gbit/s Switch 48 Port
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	8
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	9
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	10	.. uml::
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	11
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	12	@startuml
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	13
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	14	header
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	15	<font color=red>Still in progress</font>
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	16	endheader
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	17
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	18	cloud "FHI-Net" as FHINet <<"141.14.128.0/20">> {
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	19	["Switch xx, Port yy"] as SP_xx_yy
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	20	["Switch XX, Port YY"] as SP_XX_YY
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	21	["Switch AA, Port AA"] as SP_AA_AA
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	22	["Switch BB, Port BB"] as SP_BB_BB
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	23	}
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	24
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	25
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	26	cloud "Q-Management" as mgmt <<192.168.1.0/24>> {
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	27	node q <<Frontend>> {
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	28	[emx1] <<192.168.1.1>>
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	29	}
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	30	' node "node-0-0-sp" as OOSP <<"x.x.x.x">>
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	31	' node "node-0-1-sp" as 01SP <<"y.y.y.y">>
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	32	}
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	33
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	34	'cloud "Q-Interconnect" <<"10.1.1.0/24">> {
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	35	' node "q_p7p1" <<"10.1.1.1">>
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	36	'}
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	37
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	38
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	39	node "q-msw-01" as qmsw01 {
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	40	[Port_01_48] <<"141.14.128.59">>
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	41	}
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	42
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	43
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	44
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	45
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	46	node "q-msw-02"
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	47	node "q-dsw-01"
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	48	node "q-dsw-02"
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	49
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	50	[SP_xx_yy] <-down-> [Port_01_48] : "1Gbit/s"
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	51	qmsw01 <-down-> mgmt : "1Gbit/s"
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	52	@enduml
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	53
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	54	Configuring the switches
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	55	========================
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	56	The Dell Networking N151548 front panel provides 48 Gigabit Ethernet RJ-45 ports and
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	57	four SFP+ 10G ports. For the inital configuration the console port which is located on the right side
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	58	of the front panel has to be used. The default rate is 9600 baud (8N1).
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	59	This switch will be used to connect the iDrac-Interfaces. Should be reachable from the FHI-Net.
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	60
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	61	Connect a terminal to the console and reset the switch (right side of the front panel)::
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	62
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	63	wait for Easy Setup Wizard
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	64	do not configure SNMP
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	65	the setup user account, root/k0b...en
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	66	set up VLAN1 routing
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	67	IP: 141.14.128.59 for q-msw-01 (rack 3)
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	68	IP: 141.14.128.60 for q-msw-02 (rack 1)
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	69	Netmask: /20
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	70	Default Gateway: 141.14.128.16
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	71
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	72	To enable ssh::
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	73
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	74	console>enable
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	75	console#config
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	76	console(config)#crypto-key generate rsa
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	77	console(config)#crypto-key generate dsa
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	78	console(config)#ip ssh server
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	79
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	80	Now make sure that the configuration is ok::
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	81
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	82	humma-kavula:q-doc junkes$ ssh root@q-msw-01
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	83	The authenticity of host 'q-msw-01 (141.14.128.59)' can't be established.
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	84	RSA key fingerprint is SHA256:Ss4qzEjy0fmE8U/7GM5wqxIcKjYkgUUdl9y5EAsGemM.
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	85	Are you sure you want to continue connecting (yes/no)? yes
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	86	Warning: Permanently added 'q-msw-01,141.14.128.59' (RSA) to the list of known hosts.
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	87	root@q-msw-01's password:
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	88
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	89	console>show ip interface vlan 1
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	90
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	91	Routing interface status....................... Up
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	92	Primary IP Address............................. 141.14.128.59/255.255.240.0
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	93	Method......................................... Manual
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	94	Routing Mode................................... Enable
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	95	Administrative Mode............................ Enable
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	96	Forward Net Directed Broadcasts................ Disable
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	97	Proxy ARP...................................... Enable
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	98	Local Proxy ARP................................ Disable
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	99	Active State................................... Active
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	100	MAC Address.................................... E4F0.0409.34FC
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	101	Encapsulation Type............................. Ethernet
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	102	IP MTU......................................... 1500
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	103	Bandwidth...................................... 10000 kbps
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	104	Destination Unreachables....................... Enabled
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	105	ICMP Redirects................................. Enabled
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	106
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	107	To make the things easyer the http - interface should be enabled too::
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	108
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	109	humma-kavula:q-doc junkes$ ssh root@q-msw-01
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	110	root@q-msw-01's password:
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	111
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	112	console>enable
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	113
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	114	console#config
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	115
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	116	console(config)#crypto certificate 1 generate
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	117
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	118	console(config-crypto-cert)#key-generate
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	119
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	120	console(config-crypto-cert)#exit
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	121
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	122	Certificate Generation Successful..
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	123
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	124	console(config)#ip http secure-server
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	125
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	126	Don't forget to save the configuration !::
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	127
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	128	console(config)#exit
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	129
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	130	console#wr
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	131
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	132	This operation may take few minutes.
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	133	Management interfaces will not be available during this time.
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	134
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	135	Are you sure you want to save? (y/n) y
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	136
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	137
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	138	Configuration Saved!
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	139	console#
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	140
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	141	Problem: Self signed certificates not trusted on new browsers. Cert generated for 0.0.0.0 (To be checked)
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	142
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	143	The same for the N4064F gigabit switches. These switches are equipped with a OOB ethernet interface. So no VLAN1 routing
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	144	must be used.
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	145
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	146	q-dsw-01 -> 141.14.128.61/20
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	147	q-dsw-02 -> 141.14.128.62/20
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	148
bc83cf45066d Initial commit Heinz Junkes <junkes@fhi-berlin.mpg.de> parents: diff changeset	149

author	weiher
	Mon, 05 Feb 2018 16:51:33 +0100
changeset 11	ccfe3c7fa0d2
parent 0	bc83cf45066d
permissions	-rw-r--r--