No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

eSight V300R010C00SPC200, 300, and 500 Self-Service Integration Guide 10

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Exception Handling

Exception Handling

This chapter describes how to handle exceptions occurred when you use the northbound FTP interface.

eSight Cannot Connect to the Third-Party System FTP Server (Push)

  1. Contact the third-party system administrator to check whether the FTP server is started.

    • If yes, go to 2.
    • If no, ask the administrator to start the FTP server and go to 2.

  2. Require the administrator to check whether the port of the FTP server is being listened to.

    Run the following command on the third-party server to check whether the port is in the listening state:

    • Windows: netstat -an|findstr[Port number]
    • Linux: netstat -an|grep[Port number]

    The port ID indicates the ID of the port enabled on the third-party system FTP server. The default port ID is 21 (in FTP protocol) or 22 (in SFTP protocol).

    The following message uses Windows as an example to indicate that the port is being listened to:

    C:\Users\userA>netstat -an|findstr 21
    TCP    0.0.0.0:21          0.0.0.0:0              LISTENING
    TCP   [::]:21             [::]:0                 LISTENING
    • If yes, go to 3.
    • If no, ask the administrator to handle the port listening problem and go to 3.

  3. Require the administrator to check for and handle the FTP server connection failure.

    Use an FTP client to connect to the third-party system FTP server and check the connection status of the FTP server.

  4. Check whether parameters configured on the eSight are correct.

    Check whether the values of the configuration items listed in Table 5-33 are correct in the nbi.xml file.

    Table 5-33 Configuration items to be checked

    Configuration Item

    Description

    UserInfo > UserFtpInfo> CommonFTPInfo > FTPServerIp

    Indicates the IP address of the FTP server.

    UserInfo > UserFtpInfo> CommonFTPInfo > Port

    Indicates the port ID of the FTP server.

    UserInfo > UserFtpInfo> CommonFTPInfo > Username

    Indicates the FTP user name.

    UserInfo > UserFtpInfo> CommonFTPInfo > AuthMode

    Indicates the authentication mode.

    • 0: password
    • 1: public key

      You can refer to the following process:

      1. Generate the certificate.
      2. Configure the certificate name or certificate password in item sftp > keystoreFileName or sftp > sslPassword of the eSight installation directory/AppBase/etc/oms.nbi/nbi_ftp.xml.

    UserInfo > UserFtpInfo> CommonFTPInfo > AuthInfo

    Indicates the FTP user password.

The Third-Party System Cannot Connect to the eSight Server (Pull)

  1. Check whether the eSight FTP server is started.

    1. Log in to the eSight server.
    2. Run the following command to check whether the port of the FTP server is being listened to:
      • Windows: netstat -an|findstr[Port number]
      • Linux: netstat -an|grep[Port number]

      The port ID indicates the ID of the port enabled on the third-party system FTP server. The default port ID is 31921 (in FTP protocol) or 31922 (in SFTP protocol).

      The following message uses Windows as an example to indicate that the port is being listened to:
      C:\Users\userA>netstat -an|findstr 31921
      TCP    0.0.0.0:31921          0.0.0.0:0              LISTENING
      TCP    [::]:31921             [::]:0                 LISTENING

  2. Check whether the eSight FTP server can be connected successfully.

    Use an FTP client to connect to the eSight FTP server and check whether the connection is successful.

  3. Check eSight SFTP MAC algorithm configurations.

    The default SFTP MAC algorithm supported by eSight is hmac-sha2-256. If the third-party system uses other MAC algorithms, you need to manually modify the sftpMAC parameter in the SFTP configurations in the med_node_1_svc.xml file (in the "eSight installation directory\AppBase\sysagent\etc\sysconf\svcbase\" directory) to add the MAC algorithms to be supported. If there are multiple MAC algorithms, separate them with commas (,).

    eSight supports the following SFTP MAC algorithms:

    • hmac-sha2-256
    • hmac-sha1
    • hmac-md5
    • hmac-md5-96
    • hmac-sha1-96

    Configuration example:

    Assume that the SFTP encryption protocol used by the third-party system is hmac-sha1, hmac-md5, hmac-md5-96, hmac-sha1-96, and hmac-sha2-256. The configurations are as follows:

    <config name="sftp">
                     <param name="enable">true</param>
                     <param name="listenerPort">31922</param>
                     <param name="CAKeystoreFileName">etc/certificate/application/med/sftp/ca/sftpCATrustStore.jks</param>
                     <param name="CAPass">@010200000000f98fe2f6937545a06a9617e4927972c033611ad2111c21f4b0aeba68127a5c01</param        >
                     <param name="keystoreFileName">etc/certificate/application/med/sftp/keys/sftpKeyStore.jks</param>
                     <param name="sslPassword">@010200000000f98fe2f6937545a06a9617e4927972c033611ad2111c21f4b0aeba68127a5c01</        param>
                     <param name="permitFileSize">10737418240</param>
                     <param name="permitFileType"></param>
                     <param name="sftpMAC">hmac-sha1,hmac-md5,hmac-md5-96,hmac-sha1-96 ,hmac-sha2-256</param>
                     <param name="sftpCipher">aes128-ctr</param>
                     <param name="maxLinkLimit">1024</param>
                     <param name="idleTime">300</param>
                     <param name="soMaxConn">50</param>
                 </config>

    After the configuration file is modified, restart eSight for the modification to take effect.

  4. Contact the third-party system administrator to check whether the parameters configured on the third-party system are correct.
Translation
Download
Updated: 2019-10-30

Document ID: EDOC1100044386

Views: 15739

Downloads: 83

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Share
Previous Next