F5 6900 Скачать руководство пользователя | Manualshive

Страница: 57 / 126

background image

Configuring and Maintaining a FIPS Security Domain

Platform Guide: 6900 and 8900

6 - 1

Understanding the FIPS implementation

The BIG-IP

®

system includes the option to install a FIPS hardware security

module (HSM). Currently, the FIPS HSM is available in the BIG-IP
6900/8900 platform. With this release, the HSM and the BIG-IP key
management software provide FIPS-140 level 2 support. This level of
support provides the following security benefits.

• Keys are stored in the HSM where they are protected from physical and

software attacks.

• Keys can never be extracted in plain text format.

This chapter describes how to configure a redundant system from the factory
with one FIPS HSM installed in each unit. To implement a FIPS solution in
a BIG-IP redundant system, you must perform the following tasks.

• Install the BIG-IP systems and connect a serial console.

• Create the FIPS security domain from the console.

• Run the Configuration utility.

• Run the

fipscardsync

utility to synchronize the FIPS HSMs from the

console.

Some of these tasks are described in other documents. When a section in this
document has tasks described in other documents, it contains links or
pointers to the related documentation.

WARNING

Do not issue back-to-back FIPS commands such as

fipsutil reset

and

fipsutil

crash

. Issuing these commands too quickly may destabilize the system.

Installing the BIG-IP systems and connecting a serial
console

The first two tasks that you need to complete when setting up a FIPS
configuration on a redundant system are to install the systems and connect a
serial console. For details about performing these tasks, refer to the
following documentation:

• For details about installing the hardware, see the

Installing and

connecting the hardware

• For information on connecting a serial console, for version 9.x BIG-IP

systems, see

Installation, Licensing, and Upgrades for BIG-IP Systems

,

and for version 10.x BIG-IP systems, see

BIG-IP

®

Systems: Getting

Started Guide

.

After you set up the systems and configure a serial console, you can create
the FIPS security domain.

«
...
55
56
57
58
59
...
»

Содержание 6900

Страница 1: ...Platform Guide 6900 and 8900 MAN 0297 03 ...

Страница 2: ......

Страница 3: ...imization Module WOM WebAccelerator WA and ZoneRunner are trademarks or service marks of F5 Networks Inc in the U S and other countries and may not be used without F5 s express written consent All other product and company names herein may be trademarks of their respective owners Export Regulation Notice This product may include cryptographic software Under the Export Administration Act the United...

Страница 4: ...Canadian CSA standards applicable to Information Technology products at the time of manufacture VCCI Class A Compliance This is a Class A product In a domestic environment this product may cause radio interference in which case the user may be required to take corrective actions VCCI A ...

Страница 5: ...Table of Contents ...

Страница 6: ......

Страница 7: ...it 3 2 Halting the unit 3 2 Powering down the unit 3 3 Rebooting the unit 3 3 Clearing alerts 3 3 Navigating through the LCD menus 3 4 LCD config menu 3 4 Screens menu 3 5 System menu 3 6 4 Using Additional 6900 8900 Platform Functionality Understanding indicator LED behavior 4 1 Indicator LED behavior 4 1 Standard operating states 4 1 Alert conditions indicated by the alarm LED 4 2 Specific statu...

Страница 8: ...pplies About the AC power supply 7 1 Replacing a power supply 7 2 8 Replacing DC Power Supplies About the DC power supply 8 1 About the DC power supply and wiring block 8 3 Guidelines for installing the system in a rack 8 4 Wiring the DC power supply wiring block 8 4 Connecting the DC power supply 8 5 Replacing a power supply 8 6 Guidelines for DC powered equipment 8 8 9 Replacing the Fan Tray Abo...

Страница 9: ...g platform airflow information 12 1 Airflow for the 6900 8900 platform 12 1 13 Reviewing Hardware Specifications General specifications for system features 13 1 6900 platform hardware and operating specifications 13 2 8900 platform hardware and operating specifications 13 4 Acoustic airflow and altitude specifications 13 6 A Platform Specific Hazardous Substance Levels for China 6900 platform A 1 ...

Страница 10: ...Table of Contents viii ...

Страница 11: ...1 The 6900 8900 Platform About the 6900 8900 platform Technical support resources ...

Страница 12: ......

Страница 13: ...hardware SSL acceleration and compression and supports eight small form factor pluggable SFP transceivers LC connector type and sixteen 10 100 1000 interfaces 8900 platform The 8900 platform Figure 1 2 on page 1 3 features two quad core processors provides hardware SSL acceleration and compression and supports eight small form factor pluggable SFP transceivers LC connector type two SFP transceiver...

Страница 14: ...dition of the unit For details about the behavior of the LEDs see Understanding indicator LED behavior on page 4 1 The interfaces on every platform are labeled so it should be clear what each port is no matter which hardware configuration you have purchased Figure 1 1 Front view of a 6900 platform Figure 1 2 on page 1 3 illustrates the front of the 8900 platform The front of the 8900 platform is s...

Страница 15: ...e 6900 and 8900 platforms Figure 1 3 Back view of the 6900 and 8900 platforms 1 Management port 2 USB ports 3 Console port 4 Hard wired failover port 5 10 100 1000 interfaces 6 SFP ports 7 SFP ports 8 Indicator LEDs 9 LCD display 10 LCD control buttons 1 Power input panel Power receptacle 2 Power input panel Power receptacle 3 Fan tray ...

Страница 16: ...l modem cable If you want to use the default platform configuration you must have an administrative workstation on the same IP network as the platform You also need network hubs switches or concentrators to connect to the platform network interfaces The devices you select must be compatible with the network interface cards installed in the platform The devices can support 10 100 Ethernet or Gigabi...

Страница 17: ...een in the Configuration utility The Welcome screen in the Configuration utility contains links to many useful web sites and resources including The Ask F5SM Knowledge Base The F5 Solution Center The F5 DevCentral web site Plug ins SNMP MIBs and SSH clients F5 Networks Technical Support web site The F5 Networks Technical Support web site https support f5 com provides the latest documentation for t...

Страница 18: ...Chapter 1 1 6 ...

Страница 19: ...2 Installing the 6900 8900 Platform Installing and connecting the hardware ...

Страница 20: ......

Страница 21: ...brackets directly onto the unit install the unit into the rack and then connect the peripheral hardware and the interfaces For detailed information see Installing the unit using a front mounting kit on page 2 3 Rail mounting kit If you want to install the 6900 8900 platform using a rail mounting kit you need to install the inner rails onto the unit install the outer rails into the rack install the...

Страница 22: ...n WARNING This product is sensitive to electrostatic discharge ESD We recommend that when you maintain the unit you use proper ESD grounding procedures and equipment WARNING Do not turn on the 6900 8900 platform until the management serial console or the management network is connected to the unit Attaching the front bezel to the unit The 6900 8900 platform includes a removable front bezel The bez...

Страница 23: ...it and install the unit into the rack you need to perform the following tasks Attach the front mounting brackets to the unit following Install the unit into a rack on page 2 3 Connect cables and other hardware on page 2 10 To attach the front mounting brackets to the unit 1 Align the keyhole slots on the bracket to the pins on the side of the unit 2 Slide the bracket toward the front of the unit t...

Страница 24: ...kit We recommend that you use a shelf kit created by the rack manufacturer Some rack manufacturers provide shelf kits for their racks Figure 2 2 shows an example of a 6900 8900 platform installed in a rack using the front mounting brackets Figure 2 2 6900 8900 platform installed in a 19 rack Regardless of which mounting type you use to install the unit you finish the installation by connecting the...

Страница 25: ...wo pairs of rails These separate into the smaller inner rails that you attach to either side of the unit and the larger outer rails that you attach to the rack Once the kit is installed these inner rails slide into the outer rails that you install onto the rack The rails slide in and out of the rack Four mounting brackets two front and two rear Rail mount lock brackets and screws Eight 8 32 thumb ...

Страница 26: ...e back of the unit to lock the pins to the inner rail as shown in Figure 2 3 If you need to remove the inner rail from the side of the unit press the spring clip located on the first pin pull the inner rail away from the pin and then remove the inner rail from the unit 3 Attach the rail mount lock brackets to each side of the unit using the included screws as shown in Figure 2 4 Figure 2 4 Rail mo...

Страница 27: ...ts on the front brackets as shown in Figure 2 5 4 Attach the rear mounting brackets to the outer rails and then hand tighten the Keps nuts 5 Remove the outer rails and attached mounting brackets from the unit 6 Hold the rails and brackets up to the rack place the front bracket either in front of or behind the cabinet rail at the front of the rack and secure it to the rack using at least two thumb ...

Страница 28: ...e unit and the outer rails and mounting brackets are installed onto the rack you can easily install the unit into the rack Important Before you install the unit into the rack be sure to bring the ball retainer on each of the outer rails fully forward Figure 2 7 shows the proper position of the ball retainer for installation Figure 2 7 Proper position of ball retainer in extended outer rail ...

Страница 29: ...ment pins as shown in Figure 2 7 on page 2 8 4 Slide the unit into the rack fitting the inner rails attached to the unit to the outer rails attached to the rack and continue sliding the rail to the fully closed position Note If the rail stops suddenly or locks press the levers on the inner rail to enable the rails to slide into the fully closed position 5 Move the unit in and out of the rack to se...

Страница 30: ...in Figure 1 1 on page 1 2 If you are using a management workstation connect an Ethernet cable to the management port number 1 in Figure 1 1 on page 1 2 2 If you intend to set up a redundant system configuration with hard wired failover capacity connect the failover cable to the failover port on each unit number 4 in Figure 1 1 on page 1 2 3 Connect the power cable to the power input panel number 2...

Страница 31: ...3 Operating the LCD Panel Introducing the LCD panel Using the LCD panel Navigating through the LCD menus ...

Страница 32: ......

Страница 33: ...he LCD config menu to configure the properties of the LCD panel Screens menu Use the Screens menu to set up the informational screens you would like the LCD panel to cycle through The information screens include system status statistics and system alerts System menu Use the System menu to reboot netboot or halt the unit This menu also has options for setting the properties of the management interf...

Страница 34: ...es the screen displayed on the LCD panel every four seconds Using LCD menus Pressing the X button puts the LCD panel in Menu mode The buttons Left Arrow Right Arrow Up Arrow and Down Arrow are functional only when the LCD panel is in Menu mode Powering up the unit When you want to power on a unit that is shut down ensure that the switches on the power supplies located the back of the unit are ON a...

Страница 35: ...t Hold the X button for four seconds to power down the unit We recommend that you halt the system before you power down the system in this manner Rebooting the unit Hold the Check button for four seconds to reboot the unit You should only use this option after you halt the unit Clearing alerts Press the Check button to clear any alerts on the LCD screen You must clear any alerts on the screen befo...

Страница 36: ...ilable on the LCD config menu and describes each option Option Description Backlight Use the Check button to select an LCD screen backlight option The following options are available ON When checked enables the backlight GRAY When checked enables the software to specify when the backlight is turned on OFF When not checked disables the backlight Contrast Use the Left and Right arrow keys on the LCD...

Страница 37: ...the date and time InfoScreen Information screen Displays the information screen menu MACscreen MAC addresses screen Displays the MAC addresses on the unit SysinfoScreen System information screen Displays system information TMMAuthScreen Auth requests Displays the number of authentication requests being processed TMMCPUScreen CPU usage Displays the CPU usage percentage TMMMemoryScreen Memory usage ...

Страница 38: ... interface IP address You can use only an IPv4 address Mgmt Mask Set the netmask for the management interface IP address Mgmt Gateway Type the default route for the management interface This route is necessary if you plan to manage the unit from a different subnetwork Commit Select this option to commit your changes Serial Speed Use this option to change the baud rate of the serial port The follow...

Страница 39: ...4 Using Additional 6900 8900 Platform Functionality Understanding indicator LED behavior Working with interfaces ...

Страница 40: ......

Страница 41: ...Off none The LED is not lit and does not display any color Solid The LED is lit and does not blink Blinking The LED turns on and off at a regular frequency Intermittent The LED turns on and off with an irregular frequency and may sometimes appear solid Table 4 1 Indicator LED behavior LED State Description Status off No main non standby power green System is running in normal mode yellow System is...

Страница 42: ...lertd alert conf file defines standard system alerts and the config user_alert conf file defines custom settings You should edit only the config user_alert conf file LED State Description Power 1 off No power supply present in slot 1 green Power supply present in slot 1 12V output is good yellow Power supply present in slot 1 12V output is not good Power 2 off No power supply present in slot 2 gre...

Страница 43: ...roblem that interferes with the host s control of the LED Green Yellow solid status indicator LED When the status indicator LED is solid yellow or green it indicates that the BIG IP system is in a Standby state yellow or an Active state green It displays solid green if the system is standalone or if it is the active system of a redundant system configuration It displays yellow if the system is the...

Страница 44: ...Key Speed Pkts Pkts Drop Coll Bits Bits Errs Trunk Mbps in out in out 1 1 DN 1000 FD 0 0 0 0 0 0 0 1 2 DN 1000 FD 0 0 0 0 0 0 0 1 3 DN 1000 FD 0 0 0 0 0 0 0 1 4 DN 1000 FD 0 0 0 0 0 0 0 1 5 DN 1000 FD 0 0 0 0 0 0 0 1 6 DN 1000 FD 0 0 0 0 0 0 0 1 7 DN 1000 FD 0 0 0 0 0 0 0 1 8 DN 1000 FD 0 0 0 0 0 0 0 1 9 DN 1000 FD 0 0 0 0 0 0 0 1 10 DN 1000 FD 0 0 0 0 0 0 0 1 11 DN 1000 FD 0 0 0 0 0 0 0 1 12 DN 1...

Страница 45: ...ng the media type All interfaces on the BIG IP system default to auto negotiate speed and duplex settings We recommend that you configure any network equipment that you plan to use with the BIG IP system to auto negotiate speed and duplex settings F5 Networks strongly recommends you do not change the default settings but if you do connect the BIG IP system to network devices with forced speed and ...

Страница 46: ...seLX full 10GbaseT full 10GbaseSR full 10GbaseLR full 10GbaseER full To view the valid media types for a specific interface type the following command b interface interface_key media show To view the valid media types for all interfaces type the following command b interface all media show Important In all Gigabit Ethernet modes the only valid duplex mode is full duplex ...

Страница 47: ...le SFP port LED indicate network traffic activity interface speed and interface duplexity The SFP port speed LED behavior is defined in Table 4 8 Interface Speed LED Appearance No Link The LED is not lit and does not display any color 10 The LED blinks yellow 100 The LED is lit yellow 1000 The LED is lit green Table 4 6 Network interface speed LED behavior Interface Status LED Appearance Idle The ...

Страница 48: ...espond with traffic activity The SFP port interface status LED behavior is defined in Table 4 11 Interface Status LED Appearance Idle The LED is not lit and does not display any color Full duplex The LED blinks green Half duplex The LED blinks yellow Table 4 9 SFP port status LED behavior Speed LED Appearance No Link The LED is not lit and does not display any color Link The LED is lit green Table...

Страница 49: ...5 Using Always On Management Introducing Always On Management Accessing the AOM Command Menu ...

Страница 50: ......

Страница 51: ...contains the options for AOM The AOM Command Menu operates independently of the Traffic Management Operating System TMOS through the management port the serial port console and remotely through the traffic management ports You can use the command menu to reset the unit even if TMOS has locked up You can get console access to the BIG IP Traffic Management Operating System itself so you can configur...

Страница 52: ...CONSOLE port type the following key sequence Esc 2 The AOM Command Menu opens For details about each option on the command menu see Using the AOM Command Menu on page 5 3 Before you can access the command menu using SSH you must also have an IP address configured for AOM For more information see Setting up Always On Management SSH access on page 5 3 To access the AOM Command Menu using SSH 1 Open ...

Страница 53: ... use the LCD panel to configure the management network interface For more information about using the LCD panel see Chapter 3 Operating the LCD Panel Using the AOM Command Menu The AOM Command Menu shown in Figure 5 1 provides the AOM options for the BIG IP system AOM Command Menu 1 Connect to Host subsystem console 2 Reboot Host subsystem sends reboot command 3 Halt Host subsystem sends halt comm...

Страница 54: ...e reset Important We do not recommend using the reset option option 4 under normal circumstances It does not allow for graceful shutdown of the BIG IP system 5 Reboots the AOM subsystem In this case the AOM subsystem is reset L Presents a logon prompt for the AOM subsystem This subsystem cannot be configured by end users N Runs the AOM network configuration utility This utility provides the abilit...

Страница 55: ... Installing the BIG IP systems and connecting a serial console Creating the FIPS security domain Running the Configuration utility Running the fipscardsync utility to synchronize the FIPS HSMs Managing FIPS keys Planning for system recovery Recovering FIPS information after a system failure ...

Страница 56: ......

Страница 57: ...n the fipscardsync utility to synchronize the FIPS HSMs from the console Some of these tasks are described in other documents When a section in this document has tasks described in other documents it contains links or pointers to the related documentation WARNING Do not issue back to back FIPS commands such as fipsutil reset and fipsutil crash Issuing these commands too quickly may destabilize the...

Страница 58: ...security domain you must use the fipsutil utility To initialize the HSM and create an SO password type the following command fipsutil f init After the utility starts you are prompted to create a security officer password and then confirm the password After you create a password and confirm it you are prompted for the security domain name Remember the security domain name you use You need the domai...

Страница 59: ...rd and key information for the FIPS security domain The following section describes how to run the fipscardsync utility For details about running the Configuration utility and creating a base network configuration see the BIG IP Quick Start Instructions These instructions are included in the BIG IP Resource Kit shipped with each unit You can also access these instructions at https support f5 com R...

Страница 60: ... the type of certificate you want to use For a self signed certificate select Self To request a certificate from a CA select Certificate Authority 5 Configure the Common Name setting and any other settings you want 6 In the Key Properties section select the security type FIPS and a key size 7 Click Finished To convert existing keys using the Configuration utility 1 On the Main tab of the navigatio...

Страница 61: ...lays the list of existing certificates 2 In the upper right corner of the screen click Import 3 Select the type of import Key 4 Select the import method File or Text 5 In the Certificate box type the name of the key You can click the Browse button and browse for the key and select it 6 Click Import After you import the key you can convert it to FIPS using the procedure To convert existing keys usi...

Страница 62: ...ilover properly every time you synchronize the configuration of the redundant system you are synchronizing card and key information for the security domain Configuring an additional unit for recovery For additional system backup you can take a third unit fully configure it add it to the security domain and synchronize the configurations Remove the unit from the network and store it in a safe locat...

Страница 63: ...IP UCS file 2 Connect the currently active unit to new replacement unit 3 On the new replacement unit run the fipsutil f init command Ensure that you use the exact same security domain that you specified when you initially set up the currently active unit 4 On the currently active unit run the fipscardsync peer command This copies the information in the FIPS module from the currently active unit t...

Страница 64: ...Chapter 6 6 8 ...

Страница 65: ...7 Replacing AC Power Supplies About the AC power supply Replacing a power supply ...

Страница 66: ......

Страница 67: ...d to run the unit with only one power supply you must install a blank supply bracket into the other power supply slot The blank supply bracket is required to maintain proper airflow in the system If you do not have a blank supply bracket leave both supplies installed and unplug the unused power supply WARNING This product is sensitive to electrostatic discharge ESD We recommend that when you insta...

Страница 68: ... the power supply screw by turning it counterclockwise using an appropriate screwdriver if necessary Note The screws that hold the power supplies to the chassis are captive and cannot be removed 3 Grasp the ejector handle and rotate it downward to eject the power supply from the system 4 Remove the power supply from the system by pulling straight toward you 5 Ensure that the latch on the new power...

Страница 69: ...crew into place using an appropriate screwdriver The power supply is connected to the system when you tighten the screw completely 8 Attach the power cord to the new power supply 9 Ensure that the power switch located on the power supply next to the screw is in the ON position ...

Страница 70: ...Chapter 7 7 4 ...

Страница 71: ...8 Replacing DC Power Supplies About the DC power supply Guidelines for DC powered equipment ...

Страница 72: ......

Страница 73: ...thout both power supplies installed in the platform can affect cooling and electromagnetic interference EMI If you need to run the unit with only one power supply you must install a blank supply bracket into the other power supply slot The blank supply bracket is required to maintain proper airflow in the system If you do not have a blank supply bracket leave both supplies installed and unplug the...

Страница 74: ...ommon bonding network CBN Note The battery return terminals on the 6900 8900 system are in an isolated DC return DC I configuration Note The 6900 8900 platform must be installed in a restricted access location such as a central office or customer premises environment ...

Страница 75: ...ing block Figure 8 1 shows the DC power supply and the DC wiring block for the 6900 8900 platform Figure 8 1 The 6900 8900 Platform DC power supply and wiring block Figure 8 2 shows the individual components of the DC wiring block for the 6900 8900 platform Figure 8 2 DC wiring block components ...

Страница 76: ...rrect wire size for your installation Note F5 Networks recommends that you use 14 AWG copper wire 2 Use the wire stripping tool to remove 3 8 in 9 56 mm of insulation Important Be sure to remove the appropriate amount of insulation from each wire If you remove too much insulation exposed wire protruding from the wiring block can create an electrical hazard If you do not remove enough insulation th...

Страница 77: ...cting the DC power supply After the 6900 8900 platform is installed in a rack you have assembled and wired the wiring block and you have installed the DC power supply into the platform you can connect the platform to the DC power source The DC power supply does not have an on off switch You can control the power from the rack switch or the DC power source Important When you connect the DC power so...

Страница 78: ...placing a power supply The design of the 6900 8900 platform is such that you can remove a power supply from the chassis without powering down the system provided that there is at least one power supply operating during the replacement process To replace a power supply 1 Disconnect the AC power cord or DC wiring block from the power supply 2 Loosen the power supply screw by turning it counterclockw...

Страница 79: ... on the new power supply is in the down position and then slide the power supply into the power supply slot until the latch engages 6 Rotate the latch upwards to fully seat the power supply 7 Tighten the screw into place by turning it clockwise using an appropriate screwdriver The power supply is connected to the system when you tighten the screw completely ...

Страница 80: ...stall the unit using a 20 Amp external branch circuit protection device For permanently connected equipment incorporate a readily accessible disconnect in the fixed wiring Use only copper conductors Cabling for the system must be grounded on both sides Normally one power feed is used for each individual power supply ...

Страница 81: ...9 Replacing the Fan Tray About the fan tray Replacing the fan tray ...

Страница 82: ......

Страница 83: ... unit or in the event of a fan failure The fans in the fan tray run constantly while the unit is on Over time the fans can wear out requiring you to replace the fan tray Figure 9 1 is an example of the fan tray installed in a 6900 8900 platform WARNING This product is sensitive to electrostatic discharge ESD We recommend that when you install or maintain the unit you use proper ESD grounding proce...

Страница 84: ... Loosen the fan tray screws by turning them counterclockwise using a Phillips screwdriver if necessary Note The screws that hold the fan trays to the chassis are captive and cannot be removed 3 Grasp the ejector handle and rotate it downward to eject the fan tray from the system 4 Remove the fan tray from the system by pulling straight toward you 5 Ensure that the handle on the new fan tray is in ...

Страница 85: ...10 Replacing Hard Drives About the hard drives If a hard drive fails Hard drive replacement on a BIG IP 10 1 0 system Hard drive replacement on a BIG IP 10 0 1 system ...

Страница 86: ......

Страница 87: ...rt of the routine maintenance of the unit or in the event of a drive failure Important We recommend that you back up your BIG IP configuration files any time you change them In the event of a drive failure you can replace the hard drive and then you can reinstall the version of the BIG IP software you were running and use the configuration backup to restore the system to its previous state ...

Страница 88: ...secondary hard drive in the same system For more information see Hard drive replacement on a BIG IP 10 0 1 system on page 10 6 For BIG IP version 9 x and 10 0 0 If your 6900 8900 system is running version 9 x or 10 0 0 your system does not support RAID and cannot use the spare disk as a replacement but if your primary hard drive the disk located in the right hand bay fails you have two options If ...

Страница 89: ... 1 0 software your system supports hard drive mirroring using RAID You can add the replacement hard drive that you received from F5 Networks to the new system Figure 10 1 The front of a 6900 8900 platform with front bezel removed and the orientation of the two hard drive bays Figure 10 2 A hard drive partially removed from hard drive bay 1 1 Hard drive bay 1 2 Hard drive bay 2 ...

Страница 90: ...id bay 1 flash led Note The LED continues to blink until the new hard drive begins the replication process 5 Before you remove the hard drive from the system type the following command to remove the faulty hard drive HD2 in the above example from the array tmsh modify sys raid array MD1 remove HD2 Next you can remove the faulty hard drive and replace it with the new one you received from F5 Networ...

Страница 91: ...nd to see the status of the hard drives tmsh show sys raid array A disk summary similar to the following displays The status of the replacement hard drive is undefined and the serial number should match that of the replacement drive 7 Add the replacement drive HD2 in the above example to the array by typing the following command tmsh modify sys raid array MD1 add HD2 The status of the replacement ...

Страница 92: ...o copy the contents of your primary hard drive to the spare hard drive you can move the spare hard drive to the primary hard drive bay Figure 10 3 The front of a 6900 8900 platform with front bezel removed and the location of the primary and spare hard drives Figure 10 4 The spare hard drive shown partially removed from the system 1 Primary hard drive 2 Spare hard drive ...

Страница 93: ... the chassis are captive and cannot be removed b Grasp the ejector handle and pull straight toward you to eject the hard drive from the system 4 Move the spare hard drive from hard drive bay 2 to hard drive bay 1 5 Tighten the screw into place by turning it clockwise using an appropriate screwdriver if necessary The hard drive is connected to the system when you tighten the screw completely 6 Powe...

Страница 94: ...o the unit by grasping the bezel on either side using the indentations provided Note Failure to use the indentations could result in pinched fingers 6 Create a new spare disk as described in Creating a spare disk on page 10 8 Creating a spare disk If you are running version 10 0 1 you can use the sparedisk utility to create a backup of the primary disk in your system Important F5 Networks recommen...

Страница 95: ...and shut it down before you add or remove a hard drive To halt and power off the unit 1 On the LCD panel press the X button then use the arrow keys to navigate to the System menu 2 Press the Check button 3 Navigate to the Halt menu 4 Press the Check button 5 Press the Check button again at the confirmation screen 6 Wait 30 seconds 7 Hold the X button for four seconds to power off the unit After yo...

Страница 96: ...Chapter 10 10 10 ...

Страница 97: ...11 Working with Environmental Guidelines for the 6900 8900 Platform Environmental requirements ...

Страница 98: ......

Страница 99: ...k according to the manufacturer s instructions and check the rack for stability before placing equipment in it Build and position the rack so that once you install the platform the power supply and the vents on both the front and back of the unit remain unobstructed The platform must have adequate ventilation around the unit at all times Do not allow the air temperature in the room to exceed 104 F...

Страница 100: ...Chapter 11 11 2 ...

Страница 101: ...12 Understanding Platform Airflow Reviewing platform airflow information ...

Страница 102: ......

Страница 103: ...rack it is important to understand the unit s airflow direction so that you can ensure proper cooling Airflow for the 6900 8900 platform The 6900 8900 platform employs a negative pressure fan system which draws cold air in from the front of the chassis and exhausts hot air out the back as shown in Figure 12 1 Figure 12 1 Airflow in 6900 8900 platform ...

Страница 104: ...Chapter 12 12 2 ...

Страница 105: ...Hardware Specifications General specifications for system features 6900 platform hardware and operating specifications 8900 platform hardware and operating specifications Acoustic airflow and altitude specifications ...

Страница 106: ......

Страница 107: ...ork monitoring scheduled batch job processing system status reports and alarms event notification Network management and monitoring Secure SSL browser based interface remote encrypted logon and file transfer using SSH monitor BIG IP system network monitoring utilities and additional contributed software SNMP gets and traps iControl API using CORBA SOAP XML Dynamic content support ASP active server...

Страница 108: ...ocessor Two Dual Core AMD Opteron processors Network interface 16x10 100 1000BASE TX Copper ports 8x1000BASE SX SFP Fiber ports 1000BASE SX 850nm LC Connector 1000BASE LX 1310nm LC Connector optional 10BaseT 100BaseT 1000BaseT Copper SFP RJ45 Connector optional 1x10 100 1000 Ethernet Management port Hard drive capacity Two 320 GB hard drives RAM 8 GB AC power supply Two 850W 90 125 VAC 10 or 200 2...

Страница 109: ... Safety agency approval UL 60950 UL1950 3 CSA C22 2 No 60950 00 Bi national standard with UL 60950 CB TEST CERTIFICATION TO IEC 950 EN 60950 Electromagnetic emissions certifications EN55022 1998 Class A EN55024 1998 Class A FCC Part 15B Class A VCCI Class A Non operational specification Temperature 40 to 158 F 40 to 70 C Humidity 10 to 95 at 104 F 40 C non condensing Item Specification Table 13 2 ...

Страница 110: ...Quad Core AMD Opteron processors Network interface 16x10 100 1000 BASE TX Copper ports 8x1000BASE SX SFP Fiber ports 2x10GE SFP Fiber ports 1000BASE SX 850nm LC Connector 1000BASE LX 1310nm LC Connector optional 10BaseT 100BaseT 1000BaseT Copper SFP RJ45 Connector optional 1x10 100 1000 Ethernet Management port Hard drive capacity Two 320 GB hard drives RAM 16 GB AC power supply Two 850W 90 125 VA...

Страница 111: ... Safety agency approval UL 60950 UL1950 3 CSA C22 2 No 60950 00 Bi national standard with UL 60950 CB TEST CERTIFICATION TO IEC 950 EN 60950 Electromagnetic emissions certifications EN55022 1998 Class A EN55024 1998 Class A FCC Part 15B Class A VCCI Class A Non operational specification Temperature 40 to 158 F 40 to 70 C Humidity 10 to 95 at 104 F 40 C non condensing Item Specification Table 13 3 ...

Страница 112: ...RE section 4 1 3 This unit is functional when installed at elevations between 60m 197ft below sea level and 1800m 6000 ft above sea level at the aisle ambient temperatures of 40 C 3 Fan tray airflow measurements taken at 100 duty cycle and in open air Detail Units 6900 8900 Acoustic 1 Front dBA 66 66 Rear dBA 72 72 Left dBA 61 61 Right dBA 64 64 Top dBA 67 67 Altitude 2 Operational Feet 13 000 13 ...

Страница 113: ...A Platform Specific Hazardous Substance Levels for China 6900 platform 8900 platform ...

Страница 114: ......

Страница 115: ...azardous Substance Levels for China Platform Guide 6900 and 8900 A 1 6900 platform This table lists hazardous substances controlled by China and shows how the F5 Networks 6900 platform components conform to the standards ...

Страница 116: ...Appendix A A 2 8900 platform This table lists hazardous substances controlled by China and shows how the F5 Networks 8900 platform components conform to the standards ...

Страница 117: ...Glossary ...

Страница 118: ......

Страница 119: ...anslate to 101 102 103 104 LCD liquid crystal display An LCD panel is available on the front of the 6900 8900 platform You can use the LCD and its associated controls to configure the management port on the unit and view basic statistics LED light emitting diode Indicator and network interface LEDs are available on the front of the 6900 8900 platform You can use these LEDs to monitor any alert con...

Страница 120: ...nstead of HTTP subnetwork The portion of a network that shares a common address component is called a subnetwork For instance on TCP IP networks a subnetwork is all devices whose IP addresses have the same prefix segment virtual server Virtual servers are a specific combination of virtual address and virtual port associated with a content site that is managed by BIG IP system or other type of host...

Страница 121: ...Index ...

Страница 122: ......

Страница 123: ...AOM 5 4 command line configuration AOM 5 1 Configuration utility about online help 1 5 about the Welcome screen 1 5 console access 5 1 cooling system for platform 12 1 D DC power supply and connecting the DC power source 8 5 and specifications 13 2 13 4 DC power supply support 8 1 DC wiring block assembling and preparing 8 4 DC powered equipment and guidelines 8 8 device redundancy 13 1 dimensions...

Страница 124: ...2 hubs 1 4 humidity 13 3 13 5 I indicator LEDs and appearance 4 1 and behavior 4 1 and operating states 4 1 and solid status 4 3 configuring 4 3 displaying node status 4 3 for alert conditions 4 2 for SFP ports 4 7 4 8 for special conditions 4 3 locating 1 2 when green 4 3 when yellow 4 3 inner rails 2 5 installation See rack installation interface See management interface interface settings displ...

Страница 125: ...y 7 2 power supply LEDs 4 2 power up operation 3 2 processor specifications 13 2 13 4 PXE server installing software from 3 6 R rack installation and front mount 2 3 connecting components 2 3 rack mounting and front mount 2 3 and general environmental guidelines 11 1 and rail mount 2 5 and unit spacing 2 2 rack mounting screws 2 4 RAID 10 2 rail mount lock brackets 2 5 rail mounting about cables 2...

Страница 126: ...SSH clients 5 2 SSL 1 1 13 1 standard operating state 4 1 status LED 4 1 switches 1 4 system airflow See airflow System menu 3 1 3 6 T TMOS 5 1 traffic management operating system See TMOS typical heat generated 13 2 13 4 typical power draw 13 2 13 4 U units resetting 5 1 USB port and supported CD DVD ROM drives 1 4 V ventilation 11 1 12 1 13 6 W warnings environmental 11 1 See also China material...

Отзывы:

Нет отзывов

Похожие инструкции для 6900

Verizon DSL-2750B

Бренд: D-Link Страницы: 6

Бренд: D-Link Страницы: 10

Бренд: D-Link Страницы: 38

Бренд: Mackie Страницы: 2

Бренд: Mackie Страницы: 5

Бренд: Campbell Страницы: 42

Бренд: Hama Страницы: 4

Бренд: Danfoss Страницы: 61

Бренд: Datasat Страницы: 170

Z3-DM8168-PCI-RPS

Бренд: Z3 Technology Страницы: 20

Z3-DM8107-SDI2-RPS

Бренд: Z3 Technology Страницы: 75

Бренд: Z-Wave Страницы: 13

Бренд: Opengear Страницы: 2

Бренд: Axis Страницы: 104

Бренд: Intel Страницы: 108

Бренд: Roland Страницы: 2

Бренд: Realtek Страницы: 30

Converter Board R0E5212BACFG00

Бренд: Renesas Страницы: 6

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды