...
- Cell Manager - a DPOD server (virtual or physical) that manages all Federated Cell Members (FCMs) as well as provides central DPOD services such as the Web Console, reports, alerts, etc.
- Federated Cell Member (FCM) - a DPOD server (usually physical with local high speed storage) that includes Store data nodes and agents (Syslog and WS-M) for collecting, parsing and storing data. There could be one or more cell members per cell.
See the following chartdiagram:
The following procedure describes the process of establishing a DPOD cell environment.
Prerequisites
- The DPOD cell manager and cell FCM members must be with the same version (minimum version is v1.0.8.5).
- DPOD ce ll cell manager can be installed in both "Appliance Mode" or " or Non-Appliance Mode" installation with "medium" architecture type with Medium Load architecture type, as detailed in the Hardware and Software Requirements. The manager server can be both virtual or physical.
- DPOD cell member (FCM) should be "installed in Non-appliance Mode" installation with " with High_20dv with High Load" architecture architecture type, as detailed in the Hardware and Software Requirements.
- Each cluster cell component (manager / FCM) should have two network interfaces:
- External interface - for DPOD users to access UI the Web Console and for communication between DPOD and Monitored Gateways.
- Internal Interface interface - for internal DPOD components inter-communication (should be 10GB a 10Gb Ethernet interface)
- .
- Network ports should be opened in the network firewall - see as detailed in table 1 below:
| Anchor | ||||
|---|---|---|---|---|
|
From | To | Ports (Defaults) | Protocol | Usage |
|---|---|---|---|---|
Cell Manager DPOD Appliance | Each Monitored Device | 5550 (TCP) | HTTP/S | Monitored Device administration management interface |
Cell Manager DPOD Appliance | DNS Server | TCP and UDP 53 | DNS | DNS services. Static IP address may be used. |
Cell Manager DPOD Appliance | NTP Server | 123 (UDP) | NTP | Time synchronization |
Cell Manager DPOD Appliance | Organizational mail server | 25 (TCP) | SMTP | Send reports by email |
Cell Manager DPOD Appliance | LDAP | TCP 389 / 636 (SSL). TCP 3268 / 3269 (SSL) | LDAP | Authentication & authorization. Can be over SSL |
| Cell Manager DPOD Appliance | Each of the Cell Member DPOD Appliance | 9300-9305 (TCP) | Elasticsearch | Elasticsearch Communication (data + management) |
NTP Server | Cell Manager DPOD Appliance | 123 (UDP) | NTP | Time synchronization |
Each Monitored Device | Cell Manager DPOD Appliance | 60000-60003 (TCP) | TCP | SYSLOG Data |
Each Monitored Device | Cell Manager DPOD Appliance | 60020-60023 (TCP) | HTTP/S | WS-M Payloads |
FROM Users IPs | Cell Manager DPOD Appliance | 443 (TCP) | HTTP/S | Access to with IBM DataPower Operations Dashboard Console |
FROM Admins IPs | Cell Manager DPOD Appliance | 22 (TCP) | TCP | SSH |
| Cell Member DPOD Appliance | Cell Manager DPOD Appliance | 9200, 9300-9400 | Elasticsearch | Elasticsearch Communication (data + management) |
Cell Member DPOD Appliance | DNS Server | TCP and UDP 53 | DNS | DNS services |
Cell Member DPOD Appliance | NTP Server | 123 (UDP) | NTP | Time synchronization |
NTP Server | Cell Member DPOD Appliance | 123 (UDP) | NTP | Time synchronization |
Each Monitored Device | Cell Member DPOD Appliance | 60000-60003 (TCP) | TCP | SYSLOG Data |
Each Monitored Device | Cell Member DPOD Appliance | 60020-60023 (TCP) | HTTP/S | WS-M Payloads |
FROM Admins IPs | Cell Member DPOD Appliance | 22 (TCP) | TCP | SSH |
...