Versions Compared

Version Old Version 27 New Version 28
Changes made by

Amit Munwes

Amit Munwes

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • Cell Manager - a DPOD server (virtual or physical) that manages all Federated Cell Members (FCMs) as well as provides central DPOD services such as the Web Console, reports, alerts, etc.
  • Federated Cell Member (FCM) - a DPOD server (usually physical with local high speed storage) that includes Store data nodes and agents (Syslog and WS-M) for collecting, parsing and storing data. There could be one or more federated cell members per cell.

See the following diagram:

...

Prerequisites

  1. DPOD cell manager and federated cell members must be with the same version (minimum version is v1.0.8.5).
  2. DPOD cell manager can be installed in both Appliance Mode or Non-Appliance Mode with Medium Load architecture type, as detailed in the Hardware and Software Requirements. The manager server can be both virtual or physical.
  3. DPOD federated cell member (FCM) should be installed in Non-appliance Mode with High_20dv with High Load architecture type, as detailed in the Hardware and Software Requirements.
  4. Each cell component (manager / FCM) should have two network interfaces:
    1. External interface - for DPOD users to access the Web Console and for communication between DPOD and Monitored Gateways.
    2. Internal interface - for internal DPOD components inter-communication (should be a 10Gb Ethernet interface).
  5. Network ports should be opened in the network firewall as detailed below:

From

To

Ports (Defaults)

Protocol

Usage

DPOD Cell Manager

Each Monitored Device

5550 (TCP)

HTTP/S

Monitored device administration management interface

DPOD Cell Manager

DNS Server

TCP and UDP 53

DNS

DNS services. Static IP address may be used.

DPOD Cell Manager

NTP Server

123 (UDP)

NTP

Time synchronization

DPOD Cell Manager

Organizational mail server

25 (TCP)

SMTP

Send reports by email

DPOD Cell Manager

LDAP

TCP 389 / 636 (SSL).

TCP 3268 / 3269 (SSL)

LDAP

Authentication & authorization. Can be over SSL.

DPOD Cell ManagerEach DPOD Federated Cell Member9300-9305 (TCP)ElasticSearchElasticSearch Communication (data + management)

NTP Server

DPOD Cell Manager DPOD Appliance  

123 (UDP)

NTP

Time synchronization

Each Monitored Device

DPOD Cell Manager

60000-60003 (TCP)

TCP

SYSLOG Data

Each Monitored Device

DPOD Cell Manager

60020-60023 (TCP)

HTTP/S

WS-M Payloads

FROM Users IPs         

DPOD Cell Manager

443 (TCP)

HTTP/S

Access to with IBM DataPower Operations Dashboard Web Console

FROM Admins IPs         

DPOD Cell Manager

22 (TCP)

TCP

SSH

Each DPOD Federated Cell Member DPOD Appliance   DPOD Cell Manager9200, 9300-9400ElasticsearchElasticSearchElasticsearch Communication ElasticSearch Communication (data + management)

Each DPOD Federated Cell Member DPOD Appliance   

DNS Server

TCP and UDP 53

DNS

DNS services

Each DPOD Federated Cell Member DPOD Appliance   

NTP Server

123 (UDP)

NTP

Time synchronization

NTP Server

Each DPOD Federated Cell Member

123 (UDP)

NTP

Time synchronization

Each Monitored Device

Each DPOD Federated Cell Member

60000-60003 (TCP)

TCP

SYSLOG Data

Each Monitored Device

Each DPOD Federated Cell Member

60020-60023 (TCP)

HTTP/S

WS-M Payloads

FROM Admins IPs         

Each DPOD Federated Cell Member

22 (TCP)

TCP

SSH

Cell Manager Installation

Prerequisites

  • DPOD cell manager can be installed in both

...

  • Appliance Mode

...

  •  or Non-Appliance Mode

...

...

Installation

Install DPOD as described in one of the following installation procedures:

Note

As described on in the prerequisites section, the cell topology requires manager should have two network interfaces. when

When installing the cell manager (the standard DPDO installation before federating to cell) user will be prompt DPOD, the user is prompted to choose the ip IP address for the UI console, the Web Console - this should be the "External Interface"

...

IP address of the external network interface.

Federated Cell Member Installation

The following section will describe describes the installation process of a single Federated Cluster Cell Member (FCM). User should repeat the procedure for every FCM installation.

Prerequisites

  • DPOD federated cell member (FCM) should be "installed in Non Appliance Mode" installation with "-appliance Mode with High_20dv with High Load" architecture  architecture type, as detailed in the Hardware and Software Requirements.
  • In addition to the "Non Applianc Mode" software requirements user should Install the following software packages (RPM) :
  • iptables
  • iptables-services
  • numactl
    • we also recommend installing some utilities packages useful for system maintenance and troubleshooting : The following software packages (RPMs) should be installed: iptables, iptables-services, numactl
  • The following software packages (RPMs) are recommended for system maintenance and troubleshooting, but are not required: telnet client, net-tools, iftop, tcpdump

Installation

DPOD installation

  • Install DPOD

...

  • in Non-Appliance Mode

...


Note

As described on in the prerequisites section, the federated cell topology requires member should have two network interfaces. when

When installing the cell member (the standard DPDO installation before federating to cell) user will be prompt DPOD, the user is prompted to choose the ip IP address for the UI console.
Although cell member does not have UI service user should choose the the "External Interface".

...

the Web Console - this should be the IP address of the external network interface (although the FCM does not run the Web Console service).


  • After DPOD installation is complete, user should execute the following operation system performance optimization script.
Code Block
themeRDark
/app/scripts/tune-os-parameters.sh

...