Avocent MERGEPOINT 53XX SP MANAGER Скачать руководство пользователя страница 32 | Manualshive

Страница: 32 / 204

background image

18

MergePoint Service Processor Manager SP53XX Installer/User Guide

Firewall/Packet Filtering

Packet filtering on the MergePoint SP manager is controlled by chains and rules that are configured
in iptables. By default, the MergePoint SP manager does not forward any traffic between private
and public networks. Rules can be added to allow limited communications between specific target
devices on the private network and the public network.

NOTE: It is possible for an Admin user to create rules that circumvent the access controls on a target device.

Chains

A chain is a type of named profile that defines rules for sorting packets.

The MergePoint SP manager has a number of built-in chains with hidden rules that are
preconfigured to control communications between target devices connected to the private Ethernet
ports and devices on the public side of the MergePoint SP manager.

The default chains are defined in filter and NAT (network address translation) iptables. The mangle
table is not used. The built-in chains are named according to the type of packets they handle. The
first three chains, INPUT, OUTPUT and FORWARD are in the iptables filter table.

PREROUTING, POSTROUTING and OUTPUT are in the NAT table and implement NAT. This
includes redirecting packets addressed to a virtual IP to the target device's real IP address and then
hiding the target device's real IP address when the target device sends packets to a user.

Rules

Each chain can have one or more rules that define the following:

•

The packet characteristics being filtered. The packet is checked for characteristics defined in
the rule, for example, a specific IP header, input and output interfaces and protocol.

•

What action is performed when the packet characteristics match the rule. The packet is handled
according to the specified action (called a Rule Target, Target Action or Policy).

Rules are listed in order of priority. You can change the rule order by clicking the arrow on the rule
line. The arrow appears when there are at least two rules in a list.

When a packet is filtered, its characteristics are compared against each rule in the list until a match
is found. Once a match is found, the packet is processed and no attempt is made to match lower
priority rules.

To add a new packet filtering (firewall) rule:

1.

Click Network - Firewall.

2.

Click Add for the chain to which you wish to add a rule.

3.

Configure one or more of the following filtering options, as desired.

a.

In the Protocol drop-down menu, select a protocol.

«
...
30
31
32
33
34
...
»

Содержание MERGEPOINT 53XX SP MANAGER

Страница 1: ...MERGEPOINT 53XX SP MANAGER Installer User Guide...

Страница 2: ...likely to cause harmful interference in which case the user will be required to cor rect the interference at his own expense Canadian Notification This class A digital apparatus complies with Canadian...

Страница 3: ...Guide Avocent the Avocent logo The Power of Being There MergePoint and DSView are registered trademarks of Avocent Corporation or its affiliates in the U S and other countries All other marks are the...

Страница 4: ...lated dangerous voltage within the product s enclosure that may be of sufficient magnitude to constitute a risk of electric shock to persons Power On This symbol indicates the principal on off switch...

Страница 5: ...11 Activating the MergePoint SP5300 Appliance License Keys 12 Adding the MergePoint SP Manager to a DSView 3 Software Installation 13 Configuring the MergePoint SP Manager Network Settings 13 Ethernet...

Страница 6: ...Configuring the MergePoint SP Manager System 35 System settings Admin users only 35 PCMCIA for the MergePoint SP5324 SP5340 Appliance 37 Completing the MergePoint SP Manager Installation 37 Chapter 3...

Страница 7: ...Boot configuration for the MergePoint SP5324 SP5340 appliance 64 Unbinding the MergePoint SP manager from the DSView 3 server 65 Chapter 4 Configuring External Authentication Services 67 Configuring...

Страница 8: ...g Groups for Use with Authentication Servers 91 Configuring group authorization for LDAP authentication 92 Configuring group authorizations on an AD server 92 Defining groups on an LDAP server running...

Страница 9: ...ofiles 127 Terms 128 General command syntax 129 Targets 130 Using Commands 131 Viewing targets properties and commands for a target 131 Setting properties on a target 131 Associations 132 Managing Mer...

Страница 10: ...vctMP_DiscoverySAP 155 Appendices 163 Appendix A Troubleshooting 163 Service processor troubleshooting 164 Appendix B Technical Specifications 165 Appendix C Access Privileges 167 Appendix D Configuri...

Страница 11: ...ePoint SP5324 SP5340 Appliance Configuration 4 Figure 2 1 DC Power Connection Terminal Block 10 Figure 3 1 MergePoint SP Manager Web Interface 40 Figure 5 1 MergePoint SP5324 SP5340 SP Manager Native...

Страница 12: ...x MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 13: ...criptions for MergePoint SP5324 SP5340 SP Manager Native IP Configuration 74 Table 6 1 Supported Service Processor Commands 87 Table 7 1 CLI Utility Options 102 Table 7 2 Parameters that Work with the...

Страница 14: ...xii MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 15: ...d by the Distributed Management Task Force DMTF This interface provides a single command line interface to manage servers from multiple manufacturers simplifying management and streamlining interopera...

Страница 16: ...int SP manager supports target devices with a variety of service processors including IPMI Intelligent Platform Management Interface 1 5 and 2 0 NOTE The IPMI service processor is also referred to as...

Страница 17: ...about the LAN activity the LED blinks to indicate activity The power LED is green if the MergePoint SP5300 appliance is turned on Table 1 1 Descriptions for MergePoint SP5300 Appliance Configuration N...

Страница 18: ...ivate ethernet ports 24 or 40 5 10 100 secondary public Ethernet port Optional For connection to a second network connection or for failover connection to the primary network 2 10 100 GE Gigabit Ether...

Страница 19: ...nlight dust or chemical exposure all of which can cause the product to fail For example do not place an Avocent product near a radiator or heat register which can cause overheating Connect products th...

Страница 20: ...ir Flow Installation of the equipment in a rack should be such that the amount of airflow required for safe operation of the equipment is not compromised Mechanical Loading Mounting of the equipment i...

Страница 21: ...coiled in the ceiling or nearest concealed location Leave at least five feet at the work outlet side and 10 feet at the patch panel side Choose either 568A or 568B wiring standard before beginning Wir...

Страница 22: ...8 MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 23: ...figure DC power DC power is connected to DC powered MergePoint SP managers by way of three wires Return RTN Ground GND and 48VDC WARNING It is critical that the power source supports the DC power requ...

Страница 24: ...he GND terminal and tighten the screw 7 Connect your 48VDC lead to the 48VDC terminal and tighten the screw 8 Slide the protective cover back into place over the DC terminal block 9 If your MergePoint...

Страница 25: ...ors should be configured according to their manufacturer s instructions Configuring the MergePoint SP Manager Basic Settings Before a MergePoint appliance can be added to your network it must have an...

Страница 26: ...rgePoint SP manager using a previous firmware version type roll_back sh NOTE For more information on configuring IP address see Summary of How to Configure the Top Level Parameters on page 116 Activat...

Страница 27: ...of license keys and descriptions To add a master or slave key 1 Click the System tab 2 In the top navigation bar click Licenses The License window appears 3 Click Add Master Key or Add Slave Key and t...

Страница 28: ...rivate Ethernet ports is blocked unless priv0 is the sending or receiving port Public Ethernet ports On the public side of the MergePoint SP5324 SP5340 appliance the primary and secondary Ethernet por...

Страница 29: ...liance Admin users only 1 Click the Network tab 2 In the top navigation bar click Network 3 Select Eth0 or Eth1 as the default gateway and click Apply 4 Configure the following fields for the Domain N...

Страница 30: ...o configure network settings for the MergePoint SP5324 SP5340 appliance Admin users only 1 Click the Network tab 2 In the top navigation bar click Network The Appliance Network Setting window appears...

Страница 31: ...SP manager Any number of private subnets may be configured Multiple private subnets may be needed if IP addresses for target devices are not in the same range NOTE If changing or deleting a private s...

Страница 32: ...filter table PREROUTING POSTROUTING and OUTPUT are in the NAT table and implement NAT This includes redirecting packets addressed to a virtual IP to the target device s real IP address and then hiding...

Страница 33: ...lt status of the BMC on a target device is disabled and should be provisioned before it can be discovered by the MergePoint SP manager The MergePoint SP manager provides a PXE Preboot Execution Enviro...

Страница 34: ...sic provisioning parameters in the MergePoint SP5300 appliance 1 Click Targets Provisioning 2 Enter the username and gateway address in the fields provided 3 In both the Password and Confirm Password...

Страница 35: ...ete and the target device can now be managed by the MergePoint SP manager To delete the provisioning log Admin users only 1 Click Targets Provisioning 2 In the Provisioning Log area select the desired...

Страница 36: ...Add 3 Specify the following information for the new user a In the User Name field type the username b In the Password field type the password c From the Privilege drop down menu select the privileges...

Страница 37: ...ole you want to create 4 Check the operation s which you want this user role to access 5 Click Apply To change the password for the user account for Operator and User users only 1 Click Users Users 2...

Страница 38: ...n another physical network Once DHCP starts an activity log is displayed in the DHCP window listing all IP addresses which have been assigned to target devices To set the DHCP parameters in the MergeP...

Страница 39: ...nk and may be modified by clicking Edit NOTE For most of the target device types you can view the target device types from the Type column in the Unmanaged Targets list In a few cases the target devic...

Страница 40: ...t devices are distinguished using different icons in the explorer tree in the side navigation bar An icon with a key indicates a verified target device Added target devices are displayed in the Manage...

Страница 41: ...SP Profile drop down menu A BMC key is required by IPMI 2 0 and RMCP Remote Mail Checking Protocol 8 Optional From the Group Name drop down menu select a group for the new target device The target dev...

Страница 42: ...aged and verified See the following table for details To add a target device to the Managed Targets list 1 Click the Targets tab then click Targets in the top navigation bar The Targets window appears...

Страница 43: ...ation bar 5 Click Apply Added target devices are displayed in the Managed Targets list When adding a BladeCenter target device with a verified username and password all blades are added at once Otherw...

Страница 44: ...omatically created for you In the side navigation bar the appliance target devices and target devices group are displayed in the explorer tree according to hierarchy Group folders and target devices t...

Страница 45: ...user Default SP profiles define 18 default types of target devices while user SP profiles define new target device types The Admin user can view the settings of the default SP profiles and create modi...

Страница 46: ...late for the new SP profile NOTE SP profile names may only contain letters and numbers Special characters such as a space or slash are not permitted NOTE The SP template for the profile must be the sa...

Страница 47: ...earches the entire list of default usernames to see if there is an appropriate one for accessing the target device You may create multiple entries of the same username with a different password for ea...

Страница 48: ...target device MergePoint SP manager users with Admin privileges may change user account information on target devices NOTE This feature is available for target devices that have user management functi...

Страница 49: ...er System System settings Admin users only To change the MergePoint SP manager alias 1 Click System Setting 2 In the Alias field type the new name for the MergePoint SP manager and click Apply To set...

Страница 50: ...ield displays the current appliance time in the local time zone based on the time zone location settings on your client PC If you change the MergePoint appliance time zone but do not change any other...

Страница 51: ...slot 2 Two PCMCIA cards of different types can be installed in any order To install a PCMCIA card 1 Insert a PCMCIA card into a front slot and slide the card in all the way 2 Click System PCMCIA 3 Sel...

Страница 52: ...ocessor Manager SP53XX Installer User Guide After an IP address is available for the MergePoint SP manager the remote root user can use SSH to connect to the console and log in from a remote location...

Страница 53: ...to view all MergePoint SP manager operations Diagnostic Used to collect all network packets between a target device and a MergePoint SP manager for troubleshooting and problem resolution Using the Mer...

Страница 54: ...3 1 MergePoint SP Manager Web Interface Descriptions Number Window Area Description 1 Top Option Bar Use the top option bar to log out or access online help If any alerts occur a yellow icon is displa...

Страница 55: ...In addition for Dell 10G target devices you can view power tracking statistics and peak statistics by clicking Power Monitoring To view and control the power status 1 In the side navigation bar click...

Страница 56: ...ED on and leave the LED flashing for a specified number of seconds click Indicator On Seconds The LED flashes for the time specified in the Indicator On seconds field or To turn the LED on and leave t...

Страница 57: ...modify and click the desired indicator state or Click a group name from the explorer tree in the side navigation bar click Action in the top navigation bar then click the desired indicator state To s...

Страница 58: ...target devices in a group 1 Click Targets Group 2 In the Group list select the group s you wish to modify and click Set User and Password or Click a group name from the explorer tree in the side navig...

Страница 59: ...indow appears 4 Click Clear All SEL All currently listed events are removed from the list Viewing the accounting log The accounting log records and displays all MergePoint SP manager operations The WE...

Страница 60: ...evice name 2 Click the Properties tab 3 In the top navigation bar click FRU Information A detailed FRU information report appears Using the Alerts Viewer The MergePoint SP manager logs user defined al...

Страница 61: ...the password for the MSN user g In the YAHOO IM User field type the YAHOO IM account used as the YAHOO IM message sender h In the YAHOO IM Password field type the password for the YAHOO IM account 5...

Страница 62: ...m the Read Status drop down menu select the read status of the alerts you wish to be included in the query results All Read or Unread 4 Click Query to search the alerts The qualifying alerts will be d...

Страница 63: ...k System Syslog 2 In the System Destination area select Console to send messages to the console and or Click Root user to send messages to the root user 3 In the User Define Destination area configure...

Страница 64: ...Schedule Task Result list in the Schedule Task window To clear this list click Clear All Schedule a task Admin users only To schedule a task 1 Click System Schedules 2 Click Add and select Group to d...

Страница 65: ...rget devices including changing LAN parameters managing user accounts configuring PET settings configuring SoL setting BMC time performing provisioning recovery and setting up SNMP and Native IP SEL U...

Страница 66: ...ord you would like to use to access the target device 4 Click Apply NOTE For an unverified target device you can select Verify the username and password to verify the target device with the username a...

Страница 67: ...le Configuration on page 172 8 From the SoL access type drop down menu select the SoL access type for the new iLO target device NOTE This field only appears when you select iLO from the SP Profile dro...

Страница 68: ...ovided NOTE If you select DHCP the target device s IP address is dynamically distributed from a DHCP server and the fields for configuring a static IP cannot be edited 5 Click Apply SNMP The SNMP agen...

Страница 69: ...names used for accessing the MergePoint SP manager The administrator can configure the following General information provided by the MergePoint SP manager including location and contact fields Who has...

Страница 70: ...e b Select either Default or Use IP for the source c If Use IP is selected type a source IP address d If a view has been configured select a Read view and Write view from the drop down menus If no vie...

Страница 71: ...edit or delete an existing view by clicking the view name link and following the on screen instructions Accessing a service processor s SNMP through the MergePoint SP manager You can use third party u...

Страница 72: ...routes feature to manually add edit or delete existing static routes To add a static route 1 Click Network Static Routes 2 Click Add 3 In the Network Address field type a network IP address of the des...

Страница 73: ...ed from the DRAC MC Web based remote access interface For DRAC MC target devices only one SoL connection to one blade is allowed at a time NOTE For HP BladeCenter target devices firmware version v1 3...

Страница 74: ...s and results including the BIOS result Click and drag the speed bar to control replay speed Service processor console You can also access the service processor console of the selected target device A...

Страница 75: ...over LAN The Serial over LAN Configuration window appears 4 Specify any of the following information a Select or deselect Enable Serial over LAN as desired b From the Baud Rate drop down menu select t...

Страница 76: ...side navigation bar click a target device name 2 Click the Remote Control tab 3 In the top navigation bar click VNC The VNC window appears 4 In the Server field type the host operating system IP addr...

Страница 77: ...the Download button 4 Click the Download link to save the trace file NOTE The trace file is stored on the server until the next debug starts NOTE Diagnostics may also be configured using the CLI util...

Страница 78: ...re upgrades The MergePoint SP manager initially boots from a software image referred to as Image1 A new software version is downloaded and installed the new image is stored as Image2 in the Flash memo...

Страница 79: ...ager reboots if the software crashes 4 In the Unit boot from drop down menu select the desired boot method 5 To configure the unit boot from network a Enter the filename of the network boot program in...

Страница 80: ...66 MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 81: ...ication server is set up for that method as itemized in the following list The appliance must have network access to an authentication server set up for every authentication method specified Each auth...

Страница 82: ...n Local If the Kerberos authentication server which is also referred to as a Key Distribution Center or KDC has previously been configured in either of the authentication configuration screens the fie...

Страница 83: ...uthorizations with LDAP authentication To configure an LDAP authentication server 1 Click the Users tab 2 In the top navigation bar click Authentication Services The Authentication Service Configurati...

Страница 84: ...uthentication method or any of its variations Local Radius Radius Local or Radius Down Local See Configuring group authorization for RADIUS authentication on page 95 for how to manually configure grou...

Страница 85: ...ePoint SP manager is to use the TACACS authentication method or any of its variations Local TACACS TACACS Local or TACACS Down Local To configure a TACACS authentication server you must prepare an acc...

Страница 86: ...Local authentication is in effect and no configuration is required The specified type of authentication server must be available and must be configured as described under Configuring Groups for Use w...

Страница 87: ...usts with specific IP addresses that are permitted to establish Native IP connections Examples of cases where Native IP should be used instead of DirectCommand If you want an application like HP Syste...

Страница 88: ...ons for MergePoint SP5324 SP5340 SP Manager Native IP Configuration Number Description Number Description 1 Remote user 5 MergePoint SP5324 SP5340 appliance 2 LAN 6 MergePoint SP manager web interface...

Страница 89: ...ion To connect DirectCommand 1 In the side navigation bar click a target device name 2 Click the DirectCommand tab 3 Click Connect Links will appear below the button From these links you can go to the...

Страница 90: ...he Top Option bar click Connected The DirectCommand connection list window appears Select the alias of the desired target device from the window then click DirectCommand To enter the Browser Session A...

Страница 91: ...vMedia session interface are in the same page NOTE When launching a session via DirectCommand the target device may return unexpected results due to service processor instability If this occurs reset...

Страница 92: ...ive IP operations using the web interface To enable Selective mode to trust all clients 1 In the side navigation bar select the MergePoint SP manager 2 Click Network Native IP Connects 3 The Selective...

Страница 93: ...target device IP addresses is not included in a Native IP trust the Native IP status is displayed as Unavailable and a temporary connection cannot be created NOTE A Native IP connection must be set u...

Страница 94: ...the following admin MergePoint ssh t username MergePoint_IP_or_DNS_name For example admin MergePoint ssh t admin 172 26 25 173 To enable selective mode Run the command by entering the following admin...

Страница 95: ...client host ip address device IP address To enable Native IP connections permanently Run the command by entering the following admin MergePoint nativeipctl on type p client host ip address device IP a...

Страница 96: ...82 MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 97: ...ng the MergePoint SP Manager System on page 35 To use MindTerm to create an SSH tunnel 1 Log into the web interface as an administrative user and select System Setting 2 Select Connect A window runnin...

Страница 98: ...nd then connecting through the MergePoint SP manager to perform device management actions See User shell on page 85 and MgpShell on page 86 Using the SSH command with special device management command...

Страница 99: ...a menu like the one shown in the following example Access Devices Change Password Logout Admin users can get to the same menu either by entering the rmenush command on the SSH command line or by enter...

Страница 100: ...ails SSH Passthrough SSH Passthrough allows you to perform management operations on target devices without having to log into the MergePoint SP manager first You may establish an SSH connection to a t...

Страница 101: ...ample a command to open an SSH session to the MergePoint SP manager and execute power on command may look like this ssh t jsmith MGP 172 30 19 122 poweron Table 6 1 Supported Service Processor Command...

Страница 102: ...menush as their login shell see the same menu whenever they log into the console The MergePoint SP manager administrator can configure the rmenush menu to display other options including links to addi...

Страница 103: ...an be reached by using the arrow keys to scroll down To modify the user shell menu See root Mergepoint etc init d xinetd restart on page 88 for background information and examples NOTE When adding pro...

Страница 104: ...add network hosts command cli add network hosts hostIP name hostname alias alias 6 Add a network route by entering the network address after the add network st_routes command in the form 1 2 3 0 24 c...

Страница 105: ...licked Export saving changes to the configuration This procedure restores the configuration files to the state they were in when they were last backed up To restore the configuration files to the last...

Страница 106: ...n an AD server the info attribute can be used to define groups but the memberOf attribute is already used in the AD schema to denote domain membership and so it cannot be used to defining groups On an...

Страница 107: ...t Attribute field enter the group name in the format group_name Group1 If the username selected is an administrative user enter admin as the group_name 12 Click OK and close or save the windows Defini...

Страница 108: ...on the command line using the ldapadd command to add new users or the ldapmodify command to modify existing users b Put all user information including the group definition in a text file and use the t...

Страница 109: ...must define the desired groups and assign users to the groups See To configure groups on a RADIUS authentication server on page 96 The MergePoint SP manager s administrator must configure the RADIUS s...

Страница 110: ...he example 4 Save and quit the file To configure a RADIUS authentication server on the MergePoint SP manager 1 Log into the console as the root user 2 Open the etc raddb server file for editing or cre...

Страница 111: ...the IP address for the server 6 Optional Define an alternate port 7 Enter the secret shared password 8 Optional Enter a value to redefine the time out 9 Optional Enter a value to redefine the number...

Страница 112: ...1 Add a definition for the group to the authentication authorization accounting AAA database on the TACACS server NOTE These additions can be made through a GUI The example shows the configuration if...

Страница 113: ...e out in seconds for a TACACS authentication query to be answered retries Defines the number of times a TACACS server is tried before another is contacted The first server authhost1 is tried for the s...

Страница 114: ...tch port 10F 10H 100F 100H Negotiable mode System may use this value or set another value if this value is not appropriate for the switch port To get the individual port speed 1 Log into the MergePoin...

Страница 115: ...ommands on page 106 that act on parameters nested in a format called the CLI parameter tree Some parameters require arguments when the parameters are entered with some commands NOTE This section descr...

Страница 116: ...t file and executed in batch mode by invoking the CLI utility with the f file option CLI commands can be used in any kind of shell script usr bin cli can be invoked at the top of a shell script if the...

Страница 117: ...mand line For example to get the value then set the mode for failover you would enter the following command cli get network interface mode normal cli To set failover you would enter the following comm...

Страница 118: ...ould use batch mode to turn on Ethernet failover as shown in the following examples Example CLI shell script Start the script by entering usr bin cli with the Cf options usr bin cli Cf set network int...

Страница 119: ...CLI command with the f file option to execute the command s from the file as shown in the following example root MergePoint cli f filename Autocompletion Autocompletion can be used to find out what c...

Страница 120: ...ce resolv st_routes cli set network i Tab cli set network interface cli set network interface eth0 Tab address alias gateway method mtu netmask address6 broadcast gateway6 method6 mtu6 netmask6 CLI Co...

Страница 121: ...for a host you need to add the host first by adding its IP address then you need to use the set command to specify its name and alias Synopsis add parameter s value s Examples cli set network hosts 1...

Страница 122: ...umber filter INPUT OUTPUT FORWARD chainname Example add iptables nat PREROUTING 0 network interface Add an alias to an interface Synopsis add network interface interface alias alias_name Example add n...

Страница 123: ...g destination dest1 spmanager server Two steps are required to add a server to the appliance 1 Add a managed device to the appliance Synopsis add spmanager server device_name 2 Configure the device pa...

Страница 124: ...up group_name Example add spmanager group g1 NOTE To specify a device or a user to access the group see the set command for the following parameter spmanager group on page 121 server groups Add the na...

Страница 125: ...in a backup directory NOTE If you make a change but do not commit it the configuration files are not updated and your changes will be lost after the next reboot Synopsis commit delete The delete comm...

Страница 126: ...li get network hostname anchovy cli show network resolv domain avocent com When get is entered with a partial parameter all the subtrees display In the output if a value is assigned the parameter prec...

Страница 127: ...whole parameter tree is displayed If parameters are specified the corresponding subtree is displayed Synopsis list parameter s Example cli list network hosts 127 0 0 1 127 0 0 1 name 127 0 0 1 alias...

Страница 128: ...ted with that host name alias are moved under the new name Synopsis rename parameter s value s Examples cli get network hosts 192 168 160 11 network hosts 192 168 160 11 name fruitbat alias cli rename...

Страница 129: ...the parameter tree set network interface eth0 address IPaddress In contrast new hosts need to be added with the add command before their parameters can be specified add network hosts IPaddress makes...

Страница 130: ...he add command first and it also shows the parameters that need to be set after the add command creates the parameter to set additional parameters and values Table 7 3 Setting Top Level CLI Parameters...

Страница 131: ...dap host 127 0 0 1 base dc padl dc com binddn bdl bindpw pwd pam_login_attribute df ssl on smb domain sudom server1 2 2 2 1 server2 3 3 3 3 bootconf Use the set command to configure boot configuration...

Страница 132: ...stname Use the set command to configure the hostname for the MergePoint SP manager Synopsis set network hostname hostname Example set network hostname MergePoint1 NOTE By default the hostname is Merge...

Страница 133: ...y Netmask6 is a number with value between 1 and 128 IPv6 addresses are 16 byte numbers written in hexadecimal in blocks of 2 bytes separated by a colon As an example fdeb 8024 0000 0023 0000 0000 0a05...

Страница 134: ...ter pxe on page 108 pxe setting Use the set command to configure pxe settings Synopsis set pxe setting subnet subnet netmask mask gateway gateway sp_user user name sp_pwd password range_low ip_address...

Страница 135: ...cryptmethod DES AES cryptpass pwd Example set snmpd user user1 authmethod SHA authpass ert8Gftty cryptmethod DES cryptpass syOUSfda NOTE See the add command for the following second level snmpd parame...

Страница 136: ...name target target Example set spmanager user user11 role operator target 172 26 25 179 NOTE The range of a role name is admin operator user and user defined role s To add a user role see the add spma...

Страница 137: ...og presets rootuser console yes no Example set syslog presets rootuser yes console yes timezone Use the set timezone command to specify the timezone using a file relative to etc timezone conf for exam...

Страница 138: ...124 MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 139: ...e types of configuration such as changing passwords on already existing user accounts and changing configuration of already added devices that are managed by the MergePoint SP manager Perform tasks us...

Страница 140: ...ent levels of capability and different presentations of the management interface To provide a consistent standards based interface to manage and interact with the underlying systems the MergePoint SP...

Страница 141: ...Server Profile Computer System Profile Profile Registration Profile Text Console Redirection Profile Sensor Profile Record Log Profile Fan Profile IP Interface Profile Ethernet Port Profile SSH Servi...

Страница 142: ...pairs separated with the end of line characters The CLP targets are structured in a tree format with the root node admin1 at the top and the map1 node representing the MAP itself Within the MAP system...

Страница 143: ...e specified Typically options either modify output format or specify that the verb applies to nested levels For example entering all with the show command example shows the OEM properties target Speci...

Страница 144: ...nage a user group on page 136 admin1 map1 hostgroup n The server group management For an example procedure using this target see To manage a server group on page 136 admin1 map1 ipendpt1 IP address of...

Страница 145: ...r a string with spaces in it make sure to surround the value with quotes For example enter an IP address as 172 26 31 68 and a caption as Brisbane office admin1 map1 telnetsvc1 The Telnet service on t...

Страница 146: ...ciation instance For example to obtain the association of admin1 map1 clpsvc1 target enter the following command admin1 cd admin1 map1 clpsvc1 admin1 map1 clpsvc1 admin1 map1 clpsvc1 show hostedservic...

Страница 147: ...Number map1 enetport1 properties PortNumber 0 subtargets Showing Telnet and SSH services on the MergePoint SP manager The admin map1 telnetsvc1 target is the Telnet service and the admin map1 sshsvc1...

Страница 148: ...ow all map1 oemavocent_discoverysap1 NOTE all option is for OEM and it also for showing the associations of targets To configure automatic discovery 1 Configure the automatic discovery range by enteri...

Страница 149: ...ar Supported commands are create and delete To add a server to the side navigation bar Enter the create command with OtherIdentifyingInfo property create system OtherIdentifyingInfo user passwd ip ali...

Страница 150: ...P manager admin1 map1 create hostgroup name group_aa admin1 map1 hostgroup2 name hostgroup_aa 2 Add a managed server to an existing server group admin1 map1 cd hostgroup2 admin1 map1 hostgroup2 set me...

Страница 151: ...wid n target from an FTP address for upgrading and set a swid target as the firmware version to roll back to Supported commands are set and load To upgrade MergePoint SP manager firmware Enter the loa...

Страница 152: ...swid2 set isnext true isnext true admin1 map1 swid2 show admin1 map1 swid2 properties InstanceID Avct_MergePoint swid2 isnext true isinstalled true IsEntity true iscurrent false verbs cd load set sho...

Страница 153: ...ing the properties of a managed server The admin system n target is the service processor on the managed server You can view the service processor s IP address name and other properties The admin syst...

Страница 154: ...textredirectsap1 textredirectsap2 textredirectsap3 textredirectsap4 sp1 Managing power or rebooting a managed server Manage power or reboot a managed server by entering either stop reset or start with...

Страница 155: ...rationalStatus RequestedState 5 No Change EnabledState 5 Not Applicable HealthState 0 Unknown ElementName ROMB Battery CurrentState N A SensorType 3 Voltage PossibleStates CreationClassName AVCT_Discr...

Страница 156: ...ection to an service processor The target for the console of the service processor on a managed server is admin1 system1 textredirectsap n Supported commands are show start and stop To start a console...

Страница 157: ...directsap1 started at Fri Feb 22 08 01 15 2008 admin1 system1 To view session terminate sequence Enter the show command followed by admin1 system1 textredirectsap n admin1 show system1 textredirectsap...

Страница 158: ...rd4 record5 1 Enter the show command followed by the admin1 system n log1 record n target to show the records information of system event logs for system1 admin1 show system3 log1 record1 admin1 syste...

Страница 159: ...te subtargets 2 Delete all records by entering the delete command followed by the admin1 system3 log1 record target name NOTE Deletion of individual records is not supported The following delete comma...

Страница 160: ...146 MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 161: ...sman and wsmancli files on your computer NOTE Visit http www dmtf org standards wbem for more information about the WS MAN specification WS MAN Commands for the MergePoint SP Manager This section desc...

Страница 162: ...0 NOTE Modifying properties other than the caption and discovery interval is not supported and results in a error message To start the automatic discovery service Enter the following command wsman inv...

Страница 163: ...h appliance_IPaddress u wsman p secret y basic k Caption Avocent To modify the start IP address of automatic discovery Enter the following command wsman put http sblim sf net wbem wscim 1 cim schema 2...

Страница 164: ...n the return value is 2 To stop the automatic discovery Enter the following command wsman inovke http sblim sf net wbem wscim 1 cim schema 2 AvctMP_DiscoverySAP SystemCreationClassName AvctMP_Computer...

Страница 165: ...valid PowerState value and the meaning which it stands for are Powerstate 2 means power on PowerState 5 means soft power cycle PowerState 6 means hard power off PowerState 8 means soft power off NOTE...

Страница 166: ...er the following command wsman enumerate http sblim sf net wbem wscim 1 cim schema 2 AvctMP_SSHProtocolService h appliance_IPaddress u wsman p secret y basic To enumerate Avct_ElementCapabilities asso...

Страница 167: ...e AvctMP_TelnetProtocolEndpoint Name 8107 h appliance_IPaddress u wsman p secret y basic To enumerate AvctMP_SSHProtocolEndpoint instances Enter the following command wsman enumerate http sblim sf net...

Страница 168: ...er the following command wsman enumerate http sblim sf net wbem wscim 1 cim schema 2 AvctMP_TCPProtocolEndpoint h appliance_IPaddress u wsman p secret y basic To enumerate AvctMP_ElementSettingData as...

Страница 169: ...Avct_HostedService wsman enumerate http sblim sf net wbem wscim 1 cim schema 2 Avct_HostedService h appliance_IPaddress u wsman p secret y basic Examples This section provides examples of requesting...

Страница 170: ...xt wsen EnumerateResponse s Body s Envelope The following respond XML file for enumerating AvctMP_DiscoveryService instances is returned xml version 1 0 encoding UTF 8 s Envelope xmlns s http www w3 o...

Страница 171: ...oemavocent_discoveryinterval p TimeOfLastStateChange xsi nil true p EnabledDefault 2 p EnabledDefault p RequestedState 5 p RequestedState p OtherEnabledState xsi nil true p EnabledState 5 p EnabledSta...

Страница 172: ...Action http schemas xmlsoap org ws 2004 09 transfer GetResponse wsa Action wsa RelatesTo uuid 555f2613 467c 167c 8002 6319cb111100 wsa RelatesTo wsa MessageID uuid 64d4b72c 467c 167c 800c a2c88248300...

Страница 173: ...172 26 25 209 u wsman p secret y basic k Caption Avct The following respond XML file for modifying the caption is returned xml version 1 0 encoding UTF 8 s Envelope xmlns s http www w3 org 2003 05 so...

Страница 174: ...ema 2 AvctMP_DiscoveryService SystemCreationClassName AvctMP_ComputerSystem Sys temName MergePoint CreationClassName AvctMP_DiscoveryService Name oemavoc ent_discoverysrv h 172 26 25 209 u wsman p sec...

Страница 175: ...discovery service Enter the following command wsman invoke http sblim sf net wbem wscim 1 cim schema 2 AvctMP_DiscoveryService SystemCreationClassName AvctMP_ComputerSystem Sys temName MergePoint Crea...

Страница 176: ...ecret y basic a stop The following respond XML file for stopping the automatic discovery service is returned xml version 1 0 encoding UTF 8 s Envelope xmlns s http www w3 org 2003 05 soap envelope xml...

Страница 177: ...station administrators Resetting the MergePoint SP5300 appliance If necessary you can use the following options to reset the MergePoint SP5300 appliance To reset the MergePoint SP5300 appliance throug...

Страница 178: ...ctly Refer to the guidelines in the documentation included with the service processor Check that you can ping the service processor from an SSH session to the MergePoint SP manager Check the SP profil...

Страница 179: ...Voltages 3 3 V 15 A 5 V 25 A 12V 18A 12 V 1A BTU Rate 1400 Bus hour for rated output power of 260 W Environmental Temperature 0 to 35 Celsius 32 to 95 Fahrenheit operating Humidity 10 to 90 nonconden...

Страница 180: ...22 Farenheit Storage Temperature 40 to 85 Celsius 40 to 185 Farenheit Humidity 5 to 90 noncondensing Electrical Power Universal AC single or dual 100240 VAC 50 60Hz 1 4 A max Dual DC 36 to 75 VDC 5 A...

Страница 181: ...e group up down To edit the target device user including enable user username password and privilege To set the event alert destination PET setting for a target device To set the event destination PET...

Страница 182: ...er actions can be performed by all Operators To view edit LAN configuration To view target device user information except password To edit the target device user including enable user username passwor...

Страница 183: ...device time To view SEL records To view sensors information To view SoL summary To execute SoL To view SoL history To execute SoL relay To view SEL records To view sensors information To view SoL summ...

Страница 184: ...Console Redirection and press Enter 4 Change the Redirection After Boot value from Disabled to Enabled 5 Save the settings to BIOS To set the BIOS with Windows 2003 If your operating system is Windows...

Страница 185: ...pressing F9 during power up or system reset 2 Select BIOS Serial Console and EMS on the main menu and press Enter to display the options 3 Select BIOS Serial Console Port then press Enter to display...

Страница 186: ...t devices or for all target devices of the same type you need to create a custom family Except script or create modify a command templates as desired For a new target device type you need to perform t...

Страница 187: ...ct script names NOTE There are no corresponding Expect script files to families dell_10g ipmi_1 5 ipmi_2 0 and fsc_irmc Service processor device Expect script arguments With one exception each of the...

Страница 188: ...ice processor for a sensor reading and displays service processor sensor output on standard output poweron Asks the service processor to turn on its server poweroff Asks the service processor to turn...

Страница 189: ...administrator it applies to all target devices that use the template Create a new template using the Web interface when you do not wish to overwrite one of the defaults To find out if an existing com...

Страница 190: ...ility to create a new template Perform this procedure after To find out if an existing command template works with a new target device on page 175 if the default templates do not work for a new target...

Страница 191: ...lect a target device to test the template against The editor runs the commands in the specified template and returns debugging information that you can record for making command changes in a new templ...

Страница 192: ...are repeated an escape sequence can be used to automatically increment the number in the command which is needed for example when checking event log files The default editor used by sptemplate is vi...

Страница 193: ...ilo default alom default devconsole default newtemplate_1 Exit If Test is selected after the administrator selects a template a list of target devices that use the selected template appears like the l...

Страница 194: ...h username scottb and password cycl123 The administrator must enter scottb and cycl123 to perform the test The administrator tests the rsa default command template on a server called rack2_ibm_e306_rs...

Страница 195: ...status_cmd power state reset_cmd reset sensors_cmd command fans command temps command volts sel_cmd command readlog f repeat readlog until n r There are no more entries in the event log clearsel_cmd c...

Страница 196: ...and interoperability Visit www dmft org for more information DRAC The Dell Remote Access Card DRAC is an intelligent service processor integrated on certain Dell target devices DRAC III and IV target...

Страница 197: ...tems and applications and to service processor functions Target device A target device can be a data center component such as a server or router that an administrator can remotely manage through the M...

Страница 198: ...sue should develop follow the steps below for the fastest possible service To resolve an issue 1 Check the pertinent section of this manual to see if the issue can be resolved by following the procedu...

Страница 199: ...o make restrictions that forbid anyone to deny you these rights or to ask you to surrender the rights These restrictions translate to certain responsibilities for you if you distribute copies of the s...

Страница 200: ...software interchange or b Accompany it with a written offer valid for at least three years to give any third party for a charge no more than your cost of physically performing source distribution a co...

Страница 201: ...istinguishing version number If the Program specifies a version number of this License which applies to it and any later version you have the option of following the terms and conditions either of tha...

Страница 202: ...188 MergePoint Service Processor Manager SP53XX Installer User Guide...

Страница 203: ......

Страница 204: ...For Technical Support www avocent com support 590 839 501D...

Отзывы:

Нет отзывов

Похожие инструкции для MERGEPOINT 53XX SP MANAGER

Бренд: D-Link Страницы: 13

Transportation FiberinMotion

Бренд: Radwin Страницы: 122

Бренд: Rolls Страницы: 2

Бренд: Genie Страницы: 15

Бренд: Acces I/O products Страницы: 5

SINUS H PROFInet

Бренд: Enertronica Santerno Страницы: 34

Бренд: peplink Страницы: 2

Бренд: Edgewater Networks Страницы: 7

Бренд: AMX Страницы: 2

Бренд: Cervoz Страницы: 22

Quadro M6000 Sync

Бренд: Nvidia Страницы: 8

SiliconDrive SSD-P16G(I)-3100

Бренд: Silicon Systems Страницы: 108

PCIe/PXIe-6301 Series

Бренд: JYTEK Страницы: 46

Бренд: WABCO Страницы: 29

Бренд: axing Страницы: 4

Бренд: S&P Страницы: 3

Бренд: ProSoft Страницы: 53

Бренд: Aleratec Страницы: 16

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды