This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
ICSNS I
Lab Guide
OverviewThis guide includes these activities:
• Lab 1: MDS 9000 Initial Setup
• Lab 2: Troubleshooting the Boot Process
• Lab 3: Configuring CFS and Call Home
• Lab 4: Configuring VSANs, Domain Management, and Persistent FCIDs
• Lab 5: Configuring Interfaces and Port Tracking
• Lab 6: Configuring PortChannels, FSPF, NPV and NP~
• Lab 7: Configuring Device Aliases and Zoning
• Lab 8: Configuring FCIP Tunnels and Port Channels
In this activity, you will perform the initial switch configuration process so that the switch canbe accessed from the management network. After completing this activity, you will be able tomeet these objectives:
• Erase the Startup-configuration and reboot the switch
• Assign the admin password
• Complete the initial switch configuration process
• Uninstall, install, and open Cisco Fabric Manager client
• Configure default Map settings in Fabric Manager
• Launch Device Manager and a command-line session from Fabric Manager
Visual ObjectiveThe figure illustrates what you will accomplish in this activity.
Task 1: Complete the Initial Switch ConfigurationIn this task, you will start by recording the existing mgmt interface IP address/mask and thedefault-gateway (for subsequent re-assignment). You will emulate a switch from factory bydeleting the startup-con jig and rebooting the switch. Upon reboot completion, you will re-assign the admin password and run the initial switch configuration utility to assign the switchname, and re-assign the address/mask, and default-gateway.
Teaml will configure MDSl and MDS3; Team2 will configure MDS2 and MDS4. Thoseworking alone will configure all four switches.
Activity ProcedureEach team will complete the following steps on their respective switch.
Step 1 From the LabGear interface, open the console for your assigned switch from theLabgear DEVICES pane and authenticate using the following credentials. If theprompt in the console is asking for a password for "admin", skip to step 4.
Note MDS9222_1 and MDS9222_2 may represent MDS1 and MDS2 in your pod.
Switch login: adminPassword: 1234Qwer
Step 2 Invoke the following commands to display and record the IP address/mask on themgmt interface and the default gateway.
# show run int mgmtORecord IP address/mask: --------------------------------------Record IP address/mask: --------------------------------------
Step 3 Clear the current startup configuration and reboot the switch.
# write eraseWarning: This command will erase the startup-configuration.Do you wish to proceed anyway? [y/nl [Nl Y# reloadThis command will reboot the system. (y/n)? Y
Step 4 Upon reboot completion, you are required to assign the admin password and will beprompted to launch the Basic System Configuration Dialog. Answer the questionsaccording to the following example, replacing your pod number where appropriate.
Note Starting from NX-OS Release 4.x, secure password is enforced on all Cisco MDS 9000Family switches unless disabled by the user. Password should contain characters from atleast three of the following classes: lower case letters, upper case letters, digits and specialcharacters.
---- System Admin Account Setup ----
Do you want to enforce secure password standard (yes/no) [yl <Enter>
Enter the password for "admin": 1234Qwer
Confirm the password for "admin": 1234Qwer
Basic System Configuration Dialog
This setup utility will guide you through the basic configuration ofthe system.
. • • < output truncated > •
Press Enter at anytime to skip a dialog. Use ctrl-c at anytime toskip the remaining dialogs.
Would you like to enter the basic configuration dialog (yes/no) yCreate another login account (yes/no) [nl: <Enter>Configure read-only SNMP community string (yes/no) [nl: <Enter>Configure read-write SNMP community string (yes/no) [nl: <Enter>
Enter the switch name : pXmdsY (X = pod# Y = switch# ex: p12mdsl )
Continue with Out-of-band (mgmtO) management configuration? (yes/no)ly l : <Enter>
Note Advanced IP options include in-band management, static routes, default network, DNS, anddomain name.
Enable the ssh service? (yes/no) [y): cEnter>Type of ssh key you would like to generate (dsa/rsa) [rsa) cEnter>Number of rsa key bits <768-2048> [1024): cEnter>
Enable the telnet service? (yes/no) [n): yEnable the http-server? .(yes/no) Iy l . cEnter>
Note You can manually configure the switch clock and timezone.
Note By default, MDS NX-OS does not automatically adjust for daylight saving time. You canexplicitly specify the start and end dates and times and whether or not the time adjustmentrecurs every year.
Configure summertime? (yes/no) [n) cEnter>
Note In a large enterprise network, having one time standard for all network devices is critical formanagement reporting and event logging functions when trying to correlate interactingevents logged across multiple devices. Many enterprise customers with extremely mission-critical networks maintain their own stratum-1 NTP source.
Configure the ntp server? (yes/no) [n): yNTP server IPv4 address: 10.0.0.198
Configure default switchport interface state (shut/no shut) [shut)cEnter>Configure default switchport trunk mode (on/off/auto) [on): cEnter>Configure default switchport port mode F (yes/no) [n) cEnter>Configure default zone policy (permit/deny) [deny): cEnter>Enable full zoneset distribution? (yes/no) [n): y
Note By default, NXOS does not propagate the zoneset database to all switches in the VSAN.
Configure default zone mode (basic/enhanced) [basic) cEnter>
The following configuration will be applied:switchname p12mds1interface mgmtO
ip address 10.0.12.5 255.255.255.0no shutdown
ip default-gateway 10.0.12.254feature telnetfeature http-server
ntp server 10.0.0.198system default switchport shutdownsystem default switchport trunk mode onno system default zone default-zone permitno system default zone distribute fullno system default zone mode enhanced
Would you like to edit the configuration? (yes/nol [nl: cEnter>
Use this configuration and save it? (yes/nol [yl: cEnter>
Step 5 Log in to the console as admin with password 1234Qwer and ping the defaultgateway.
# ping 10.0.X.2S4PING 10.0.12.254 (10.0.12.254) 56(84) bytes of data.64 bytes from 10.0.12.254: icmp seq=l ttl=255 time=1.14 ms64 bytes from 10.0.12.254: icmp seq=2 ttl=255 time=0.485 ms64 bytes from 10.0.12.254: icmp seq=3 ttl=255 time=0.997 ms64 bytes from 10.0.12.254: icmp_seq=4 ttl=255 time=0.473 ms64 bytes from 10.0.12.254: icmp seq=5 ttl=255 time=0.486 ms
--- 10.0.12.254 ping statistics ---5 packets transmitted, 5 received, 0% packet loss, time 4021msrtt min/avg/max/mdev = 0.473/0.718/1.149/0.293 ms
Tip Ping will cease after five transmissions or press Ctrl-C to terminate.
Step 6 Display the running-configuration.
# show run!Command: show running-config!Time: Sat Nov 20 03:37:28 2010version 5.0(4)feature telnetrole name default-role
description This is a system defined role and applies to all users.rule 5 permit show feature environmentrule 4 permit show feature hardwarerule 3 permit show feature modulerule 2 permit show feature snmprule 1 permit show feature system
username admin password ***** role network-adminip domain-lookupip host p1mds1 10.0.1.5aaa group server radius radiussnmp-server user admin network-admin auth md5 ***<truncated>
rmon event 1 log trap public description FATAL (1) owner PMON@FATALrmon event 2 log trap public description CRITICAL (2) owner PMO***rmon event 3 log trap public description ERROR(3) owner PMON@ERRORrmon event 4 log trap public description WARNING(4) owner PMON@WARNINGrmon event 5 log trap public description INFORMATION (5) owner PMO***ntp server 10.0.0.198
Task 2: Uninstall Fabric Manager StandaloneIn this task, each team will execute removal of the Fabric Manager components from yourrespective server Desktop in a two-step process:
~~i:~~::r2006'07'27 :~~ ~ Microsoft iSC5I Initiator ~ r5J Server Properties
!J~ QLogic r"lanagement Suite ~
~;A RealVNC
Note Proceed to the next Task if Fabric Manager is not installed.
Step 3 When the Uninstall dialog appears, answer the queries as follows.
• To uninstall: y
•• Uninstall I!lIiIYou are about to uninstall Cisco HanageAent Software.If this is a seruer federation node. please reAoue all fabrics Aanaged by thisse r-ve r- 01' moue Aanaged fabl'ics to ano the r- ser-ve i- in the Fede r-at Lon before continuing.Are you sure you want to Un install? Press 'Y' to uninstall. 'A' to remoue all files <including client pI'efel'ences) 01' 'H' to exit. [Y/A/H] y_
~
Note Starting from NX-OS Release 4.1 (3a), uninstall Fabric Manager only removes the FabricManager component; the database (PostgreSQL or Oracle) remain intact as they may beshared with other applications (ie. Cisco DCNM). Option "A" will remove all the log filesand client preferences; option "Y" keeps the log files and client preferences.
Step 4 Hit <Enter> to complete the uninstall process and exit the window .
e let ing JBosse let ing C: 'DoculTlents and Sett ings'AdlTlinLst r-at or-'v,C iscoJllds90e let ing C: 'DoculTlents and Sett ings'AdlTlinLst r-at m-'v, c iscoJllds90e let ing C:xDocumentis and Sett ings'AdlTlinLst r-at m-'v, C iscoJllds90eleting C:'Pl'ogl-alTl Files,ColTllTlonFiles'.cisco_lTIds9000'elTlouing shol'tcuts ..•e let ing linkseleting C:'Pl'ogl'alTl Files,Cisco SystelTls'dclTI'flTl'install.confninstallat ion cnmpLe t e , Hit En t erv'Re t ur-n to exit.
.: Uninstall !l1iI f3
Step 5 To Ensure removal of old FM data, clear the JAVA cache.
• Control Panel ~ Java ~ General; click Delete Files and click OK.
'* Java Control Panel II.L~~r.i~r.~~:HUpdate I Java I Security I Advanced I
Ilier e•••r version information about Java Control Panel. AQ.out ...
rlJetwork Settings
Files you use in Java applications are stored in ·3 speciel folder for quick executionlater. emly advanced users should delete files or modify these settings.
Qelete Files .. tJ ~_~_'e_.t_ti_n_g_s._._.••.•••
Delete Temporary Files IIDelete the following temporary files?
P' Downloaded Applets
P' Downloaded Applications
P' Other Files
Step 6 Click OK to close Java Control Panel.
Step 7 Launch removal of the PostgreSQL database using Add or Remove Programs in theControl Panel.
Task 3: Install Fabric Manager StandaloneIn this task, each team will install Fabric Manager on their respective servers.
Activity ProcedureEach team will perform the following steps on your assigned W2003 Server.
• Team 1, managing mds1, will use Server 1
• Team 2, managing mds2, will use Server 2
Each team will install the Fabric Manager Standalone and the PostgreSQL database using theCD files on your respective server. At the end of the installation process, you will launch theFabric Manager and Device Manager clients.
Step 1 To locate the Fabric Manager CD files, select the Shortcut to Software folder on thedesktop and choose FMCD504.
Shortcut toSoft\·\Iare to 3CDaemon
iCJAdobe
iOCiscoACS
Type D.:lte ~·~odified ...File Folder 4/20,/20109:0:3 Arl'l
Step 11 In the FM Server login dialog, enter the password 'password' and click Login .
Login Cancel
.• ledb.C!f'SCO
Fr""Server User Name: jadmin
Fr'1Server Password: 'I'--p~a-s-s-w-o-r-d~~------
Note The Express installation option pre-sets the FM Server User Name as "admin" and the FMServer Password as "password". (The Express install also pre-sets the PostgreSQLDBUser, as "admin" and DB password as "password_1_2_3. This password can later be
changed in the PostgreSQL service dialog.
Step 12 In the Discover dialog, enter your switch IP address in the Seed Switch field,configure the following settings, and click Discover.
Step 14 Return to the Desktop, double click on the Device Manager Icon.
Note You can alternatively, double click on the switch icon in the Topology window of FabricManager to launch Device Manager which does not require authentication to the switch.
3CDaemon v·,lireshark
Iorneter~
Cisco Devicer'lanager
!J;}Start I
Step 15 In the Device Manager login, verify the IP address is entered in the Device Namefield and password 1234Qwer; then click Open.
Device Manager 5.0(4a) - Open I!!1II1I3
;dld".CISCO
Device Name: ~0.0.7 .5 :::JUser Name: Jadmin
Password: t-j-1-2-3-4-Q-w--e-r-----
Open Options> > I Close
Step 16 Device Manager should appear with the Mgmt interface the only active port .• Device Manager 5.0(4a) - MOSt [admin] I!!lIiII3Q.evice ~hysical I~terf ace E.C FIC:;ON !P 2.ecurity ~dmin ~o';Js !::!elp
IE§) (1) gf) VSANAll .,.1 Ports All .•••.1"'1 W Advanced
Step 17 Return to Fabric Manager. To Set Fabric Manager Preferences, select File>Preferences> General; check Open New Device Manager Each Time and clickApply.
5nowDeviCi}Mlmeby: rIP r: J:X.S (;L09ic'l>IName
17 51)(w~World Wide Name (W'#N) vend« By:
r Repf,;,mij Venoor Bytes 1>'Prepend ~4ame
r Appood Encio$l.Jt'e;; to End O¢'<'ke r'>lllmes
r Sho•• Shortened iSCSI Name;;
17 Show Time~t.3ff1p:;?" Dale/Time
ielnet Palh;
rv COfIfilm Oeletoo;
ExportTabieHIlth fot'met.: (;' Tab-Deimited r: XMl
rv Sho•• d'S WI.\I'I'\iI'iO~
r Show A~' >EndosWII PatternLi$t
logout after idle (minute;;):
P Oper. Ne'", Oevice P1i'Il'l!>g •••. EMh Time
Oellice Manoqer POtt Number: 12222
r Enabre Ronover for Docked Frame.,
Step 18 Choose the Map tab; check Expand Loops and Expand Multiple Links.
• Click Apply, and then OK.
• Preferences - Fabric Manager EI
P Display Unselected Group f'·1embers
P Display End Devices
P Display End Device Labels
P Expand Loops .••••••••----
P g?iF.;~Q~}}~It!p.I~Iir.If.~ .•••••••••----P Select Switch or Unkfrom Table
Step 19 Each window frame has a Toggle auto-hide button. Clicking on the toggle auto-hidebutton hides the associated window frame and sends a link to a side-bar item
• Click on toggle auto-hide button in the Logical Domains window frame .
..••~ ~tdC«nt0'-
.- l~~~\N:- itif lltaMi.
'" ~J A1V'>,AN~
'. _I S".ttM.t. __ llSl~+-. , •••••••J ENd Oe\'~.eof~ MDS1
Step 20 Clicking on the toggle auto-hide button on the side-bar item returns the windowframe to its original position.
FabricJ'lD51
[H ,-!I Switches['!} -!I ISLs
rB· -!I End Devices
1l', j
Step 21 If necessary, both teams, in Fabric Manager ~ View ~ Reset Frame Layout ToDefault.
Step 22 To launch a command-line session from Fabric Manager; right-click the switchimage in the graphic pane and choose Command Line Interface and login.
~
;2.witchAttribute5 ~
!,nterf ace Attribute5 ~
D~vice ~"anaQer
Step 23 The default command line login uses SSH. Login using admin password1234Qwer.
#10.0.7.5-PuTTYUsing username "admin".User Access VerificationUsing keyboard-interactive authentication.Password:Cisco Nexus Operating System (NX-OS) SoftwareTAC support: http://www.cisco.com/tacCopyright (c) 2002-2010, Cisco Systems, Inc. All rights reserved.The copyrights to certain works contained in this software areowned by other third parties and used and distributed underlicense. Certain components of this software are licensed underthe GNU General Public License (GPL) version 2.0 or the GNULesser General Public License (LGPL) Version 2.1. A copy of eachsuch license is available athttp://www.opensource.org/licenses/gpl-2.0.php andhttp://www.opensource.org/licenses/lgpl-2.1.phpMDS1# I
Note A command line session can be launched using Device Manager from the Device menu.
Step 24 Display the current NX-OS version.
# show version I include imagekickstart image file is: bootflash:/m9200-kick-5.0.4.binsystem image file is: bootflash:/m9200-sys-5.0.4.bin
Reference The pipe character' I ' functions the same as in Windows and UNIX, to sent the output ofthe command to another command or filter. The 'include' filter functions the same as grep.
Step 25 To verify the PostgreSQL database service is operational, right-click the Server (inthe Desktop) and select Manage; open Services and scroll-down.
Qpenm ELJ)lore
5~arch".
I'lap t!,etwork Drive ...
D[sconnect Network Drive .Reefc 11
Man e
Create 2hortcut
~ Computer Management
Computer r'lanagement (Local)iI: System ToolsCot+ ~ Event Viewer[£1.~;;;JShared Folders±! ..iC Local Users and Groups+: ..~ Performance Logs and Alerts:.. ~. Device r'lanager
c;~ ;~rage=i:,»(±l- @iT Removable Storage.. ~~ Disk Defr aqrnenter....~ Disk Management