Local High Availability System (EulerOS+GaussDB+OMMHA+Physical Machine)

eSight V300R010C00SPC600 Planning Guide 13

Rate and give feedback:

Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).

This section describes how to plan installation parameters for the local HA system (EulerOS+GaussDB+OMMHA).

Operating System Host Name Planning

Table 8-56 describes the planning of the operating system host names.

Table 8-56 Operating system host name plan

Server	Item	Example	Description
Active eSight server	Host name of an operating system	Primaster	To ensure that eSight can run properly, host name planning must comply with the following rules and restrictions: The host name of the eSight server must be unique on the network. The host name must be a string of no more than 24 characters, including only letters (A to Z, a to z), digits (0 to 9), and hyphens (-). The host name must begin with a letter and do not end with a hyphen (-). The host name cannot contain consecutive hyphens (--). The host name is case sensitive. The host name cannot contain any space. The host name must contain at least two characters.
Standby eSight server	Host name of an operating system	Secmaster

Server

Item

Example

Description

Active eSight server

Host name of an operating system

Primaster

To ensure that eSight can run properly, host name planning must comply with the following rules and restrictions:

The host name of the eSight server must be unique on the network.

The host name must be a string of no more than 24 characters, including only letters (A to Z, a to z), digits (0 to 9), and hyphens (-).

The host name must begin with a letter and do not end with a hyphen (-).

The host name cannot contain consecutive hyphens (--).

The host name is case sensitive.

The host name cannot contain any space.

The host name must contain at least two characters.

Standby eSight server

Host name of an operating system

Secmaster

Network Port and IP Address Planning

eSight supports the scenario where southbound services are isolated from northbound services and the scenario where southbound services are not isolated from northbound services. The network port and IP address planning is different for the two scenarios. It is recommended that the scenario where southbound services are isolated from northbound services be used.

The static IP address must be used.
The IP address must be unique on the live network.
The server can communicate with clients.
You can plan and configure only one IP address for one network port.
In different deployment scenarios, the IP addresses belong to different networks. You need to plan the network plane to which the IP addresses belong based on the network planning table and ensure that the network planes exist.
The IP address type can be IPv4 or IPv6, but not dual-stack.
In the scenario where southbound services are isolated from northbound services, a network port and IP address planning example is as follows.

The system IP address, heartbeat and replication IP address, and southbound IP address must belong to different network planes.

Table 8-57 Network port plan

Item	NIC	Description
TaiShan 200 (Model 2280) server	Network port 1: eth0 Network port 2: eth1 Network port 3: eth2 Network port 4: eth3	Network port 1: service network port of the eSight server, which is used to connect managed devices and the web client Network ports 2 to 4 and extended network port: standby service network ports, which are used to, for example, isolate the southbound and northbound services Mgmt: iMana/iBMC maintenance network port of Huawei servers NOTE: The network port numbers shown in this figure may be different from those displayed on the operating system. After the server is powered on, you are advised to disconnect and connect network cables to check the mapping between physical network ports on the server and network ports displayed in the operating system.
2288H V5 server	Network port 1: eth0 Network port 2: eth1 Network port 3: eth2 Network port 4: eth3
2288X V5 server	Network port 1: eth7 Network port 2: eth6 Network port 3: eth5 Network port 4: eth4 NOTE: The 2288X V5 server has two onboard network ports and two unavailable network ports. Therefore, the NIC names start from eth4.

Item

Example

NIC

Description

TaiShan 200 (Model 2280) server

Network port 1: eth0

Network port 2: eth1

Network port 3: eth2

Network port 4: eth3

Network port 1: service network port of the eSight server, which is used to connect managed devices and the web client
Network ports 2 to 4 and extended network port: standby service network ports, which are used to, for example, isolate the southbound and northbound services
Mgmt: iMana/iBMC maintenance network port of Huawei servers

NOTE:

The network port numbers shown in this figure may be different from those displayed on the operating system. After the server is powered on, you are advised to disconnect and connect network cables to check the mapping between physical network ports on the server and network ports displayed in the operating system.

2288H V5 server

Network port 1: eth0

Network port 2: eth1

Network port 3: eth2

Network port 4: eth3

2288X V5 server

Network port 1: eth7

Network port 2: eth6

Network port 3: eth5

Network port 4: eth4

NOTE:

The 2288X V5 server has two onboard network ports and two unavailable network ports. Therefore, the NIC names start from eth4.

Table 8-58 Network port and IP address plan when southbound services are isolated from northbound services

Item	Function	Server	Network Port	Network Plane	Example (IPv4)
System IP address	IP address of the operating system. You can use it to log in to the server to manage and maintain the operating system.	Active server	Network port 1 (eth0; eth7 for 2288X servers)	The system IP addresses of the active and standby servers and system floating IP address belong to the same network plane.	10.10.10.1/255.255.255.0/10.10.10.254
System IP address		Standby server	Network port 1 (eth0; eth7 for 2288X servers)		10.10.10.2/255.255.255.0/10.10.10.254
System floating IP address	Used by eSight to provide services. The IP address is used for communications between the eSight server and web client. NOTE: Do not use the floating IP address to access the server.	Active and standby servers	Network port 1 (eth0; eth7 for 2288X servers)		10.10.10.3/255.255.255.0/10.10.10.254
Heartbeat and replication IP address	Used to detect the status of the network connection and replicate data between the active and standby eSight servers.	Active server	Network port 2 (eth1; eth6 for 2288X servers)	The network to which the heartbeat and replication IP address belongs is independent of the network plane of the service network and O&M network. In addition, the heartbeat and replication network cannot communicate with the network where devices are located. The heartbeat and replication IP addresses of the active and standby servers belong to the same network plane.	192.168.100.10/255.255.255.0/192.168.100.254
Heartbeat and replication IP address		Standby server	Network port 2 (eth1; eth6 for 2288X servers)		192.168.100.20/255.255.255.0/192.168.100.254
Southbound IP address	Used for communications between the eSight server and devices.	Active server	Network port 3 (eth2; eth5 for 2288X servers)	The southbound and southbound floating IP addresses of the active and standby servers belong to the same network plane. The network plane where the southbound IP address is located must be able to communicate with the network plane where the devices are located.	10.10.11.1/255.255.255.0/10.10.11.254
Southbound IP address		Standby server	Network port 3 (eth2; eth5 for 2288X servers)		10.10.11.2/255.255.255.0/10.10.11.254
Southbound floating IP address	Used for communications between the eSight server and devices.	Active and standby servers	Network port 3 (eth2; eth5 for 2288X servers)		10.10.11.3/255.255.255.0/10.10.11.254

In the scenario where southbound services are not isolated from northbound services, a network port and IP address planning example is as follows.

The system IP address and heartbeat and replication IP address must belong to different network planes.

Table 8-59 Network port and IP address plan when southbound services are not isolated from northbound services

Item	Function	Server	Network Port	Network Plane	Example
System IP address	IP address of the operating system. You can use it to log in to the server to manage and maintain the operating system. Used for communications between the eSight server and devices.	Active server	Network port 1 (eth0; eth7 for 2288X servers)	The system IP addresses of the active and standby servers and system floating IP address belong to the same network plane.	10.10.10.1/255.255.255.0/10.10.10.254
System IP address		Standby server	Network port 1 (eth0; eth7 for 2288X servers)		10.10.10.2/255.255.255.0/10.10.10.254
System floating IP address	Used for communications between the eSight server and client as well as between the eSight server and devices.	Active and standby servers	Network port 1 (eth0; eth 7 for 2288X servers)		10.10.10.3/255.255.255.0/10.10.10.254
Heartbeat and replication IP address	Used to detect the status of the network connection and replicate data between the active and standby eSight servers.	Active server	Network port 2 (eth1; eth 6 for 2288X servers)	The network to which the heartbeat and replication IP address belongs is independent of the network plane of the service network and O&M network. In addition, the heartbeat and replication network cannot communicate with the network where devices are located. The heartbeat and replication IP addresses of the active and standby servers belong to the same network plane.	192.168.100.10/255.255.255.0/192.168.100.254
Heartbeat and replication IP address		Standby server	Network port 2 (eth1; eth 6 for 2288X servers)		192.168.100.20/255.255.255.0/192.168.100.254

Installation Path Planning

Table 8-60 Installation path plan

Item	Example	Description
eSight	/opt/eSight	The eSight software cannot be installed in the root directory. To ensure successful eSight installation, ensure that the eSight installation path is empty before the installation. The eSight installation directory and its absolute path must contain only letters, digits, hyphens (-), and underscores (_) and must begin with a letter or underscore (_). The absolute path contains a maximum of 50 characters.

User Name and Password Planning

To ensure user password security, use user passwords that meet password complexity requirements and change passwords periodically. This can prevent the user password from being stolen and prevent the HA system from being accessed without authorization. The passwords planned in this document are only examples.

Table 8-61 User and password list

User	Default Password	Description
EulerOS user root	Changeme_123	Each user must have a unique password. The password setting must comply with the following rules: The password cannot contain the user name in normal or reverse order. The password ranges from 8 to 32 characters. The same character can be used at most three times. The password must contain at least one uppercase letter (A to Z), one lowercase letter (a to z), and one digit (0 to 9).
EulerOS user ossuser	Changeme_123
GaussDB database administrator user sys	Changeme123
eSight database user commonuser of the GaussDB	Changeme_123
eSight login user admin NOTE: The user login address is https://IP address:31943.	Changeme123 NOTE: You need to change the password upon first login.
Maintenance tool user sys NOTE: The login address of the management plane is https://IP address:31945.	Changeme123 NOTE: You need to change the password upon first login.

Time Zone and Time Planning

Table 8-62 Time zone and time list

Item	Example	Description
Time zone	UTC+08:00	The times and time zones of the active and standby servers must be the same.
Time	14:00

Port Planning

For details about eSight server port planning, see eSight Communication Matrix.
- If unrelated software is installed on the eSight server, port conflicts may occur and eSight may be unavailable.
- Strictly follow instructions in eSight Communication Matrix to ensure that the operating system is secure and stable and eSight can be used properly.
- After eSight is upgraded or a patch is installed, perform operations on ports by referring to eSight Communication Matrix.
In the EulerOS, eSight automatically creates mappings for ports listed in Table 8-63 during installation, which improves system compatibility.
Table 8-63 Port mappings
Source Port

Mapped Port

Port Function

21

31921

FTP port

69

32182

TFTP port

162

10162

Alarm port

514

32185

Syslog port

Source Port	Mapped Port	Port Function
21	31921	FTP port
69	32182	TFTP port
162	10162	Alarm port
514	32185	Syslog port

Server RAID Planning

If the server is not the default one delivered for eSight, select a proper RAID type based on the number of hard disks configured on the server and Table 8-64. For details about how to plan and configure the RAID, see the server guide.
Table 8-64 RAID information
Number of Disks

Solution

2

RAID 1

3 to 8

RAID 5 + HotSpare
TaiShan 200 (Model 2280) servers delivered for eSight
Table 8-65 RAID planning for TaiShan 200 (Model 2280) servers
Server Type

Number of Disks

Disk

RAID

TaiShan 200 (Model 2280)

2

First and second disks

RAID 1

Number of Disks	Solution
2	RAID 1
3 to 8	RAID 5 + HotSpare

Server Type	Number of Disks	Disk	RAID
TaiShan 200 (Model 2280)	2	First and second disks	RAID 1

The 2288H V5 servers delivered for eSight have two types: standard-configuration servers and high-configuration servers.

Table 8-66 RAID planning for 2288H V5 servers

Server Type	Number of Disks	Disk	RAID
One-node system 2288H V5 server with standard configurations	4	First to third disks	RAID 5
	4	Fourth disk	HotSpare
One-node system 2288H V5 server with high configurations	6	First to fifth disks	RAID 5
One-node system 2288H V5 server with high configurations	6	Sixth disk	HotSpare

The 2288X V5 servers delivered for eSight have two types: standard-configuration servers and high-configuration servers.

Table 8-67 RAID planning for 2288X V5 servers

Server Type	Number of Disks	Disk	RAID
One-node system 2288X V5 server with standard configurations	2	First and second disks	RAID 1
One-node system 2288X V5 server with high configurations	6	First to fifth disks	RAID 5
One-node system 2288X V5 server with high configurations	6	Sixth disk	HotSpare

Disk Partition Planning

In manual installation scenarios, the default startup mode is UEFI.

Table 8-68 Disk partition plan

Partition	Capacity	File System	Description
/	50 GB	Ext4	Root directory for installing the operating system.
swap	16 GB	Swap	Swap partition.
/boot/efi	1 GB	FAT	Boot partition.
/tmp	10 GB	Ext4	Directory for storing temporary files.
/var/tmp	5 GB	Ext4	Directory for storing temporary files.
/home	1 GB	Ext4	Home directory of the operating system user.
/var	20 GB	Ext4	Directory for storing dynamic data about the daemon process and other system service processes.
/var/log	10 GB	Ext4	Directory for storing system log data.
/var/log/audit	10 GB	Ext4	Directory for storing audit log data.
/opt	Total remaining space	Ext4	Directory for installing eSight.

In mirror installation scenarios, the default startup mode is BIOS.

Table 8-69 Disk partition plan

Partition	Capacity	File System	Description
biosboot	2 MB	biosboot	Boot directory.
/	50 GB	Ext4	Root directory for installing the operating system.
swap	16 GB	Swap	Swap directory.
/tmp	10 GB	Ext4	Directory for storing temporary files.
/var/tmp	5 GB	Ext4	Directory for storing temporary files.
/home	1 GB	Ext4	Home directory of the operating system user.
/var	20 GB	Ext4	Directory for storing dynamic data about the daemon process and other system service processes.
/var/log	10 GB	Ext4	Directory for storing system log data.
/var/log/audit	10 GB	Ext4	Directory for storing audit log data.
/opt	Total remaining space NOTE: The hard disk space of the VM created by eSight using the image is fixed to 500 GB. The space of the "/opt" directory is about 378 GB.	Ext4	Directory for installing eSight.

Translation

简体中文

Download

Updated: 2021-01-18

Document ID: EDOC1100107088

Downloads: 218

Average rating:

This Document Applies to these Products

Related Version

Digital Signature File

Digital Signature Authentication Mode

Reminder

Operating System Host Name Planning

Network Port and IP Address Planning

Installation Path Planning

User Name and Password Planning

Time Zone and Time Planning

Port Planning

Server RAID Planning

Disk Partition Planning

Related Version

Related Documents

Digital Signature File

About Huawei

How to Buy

Partner

Resources

Others

Enterpise App

Reminder

Enterprise

Corporate

Consumer

Carrier

Africa

Latin America

Middle East

Asia Pacific

North America

Europe

Local High Availability System (EulerOS+GaussDB+OMMHA+Physical Machine)

Operating System Host Name Planning

Network Port and IP Address Planning

Installation Path Planning

User Name and Password Planning

Time Zone and Time Planning

Port Planning

Server RAID Planning

Disk Partition Planning

Related Version

Related Documents

Digital Signature File

About Huawei

How to Buy

Partner

Resources

Others

Enterpise App