No relevant resource is found in the selected language.
MENU
Support Documentation
eSight V300R010C00SPC600 Planning Guide 13
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Local High Availability System (SUSE Linux+GaussDB+OMMHA+Physical Machine)

Local High Availability System (SUSE Linux+GaussDB+OMMHA+Physical Machine)

This section describes how to plan installation parameters for the local HA system (SUSE Linux+GaussDB+OMMHA).

Operating System Host Name Planning

Table 8-101 describes the planning of the operating system host names.

Table 8-101 Operating system host name plan

Server

Item

Example

Description

Active eSight server

Host name of an operating system

Primaster

To ensure that eSight can run properly, host name planning must comply with the following rules and restrictions:

  • The host name of the eSight server must be unique on the network.
  • The host name must be a string of no more than 24 characters, including only letters (A to Z, a to z), digits (0 to 9), and hyphens (-).
  • The host name must begin with a letter and do not end with a hyphen (-).
  • The host name cannot contain consecutive hyphens (--).
  • The host name is case sensitive.
  • The host name cannot contain any space.
  • The host name must contain at least two characters.

Standby eSight server

Host name of an operating system

Secmaster

Network Port and IP Address Planning

eSight supports the scenario where southbound services are isolated from northbound services and the scenario where southbound services are not isolated from northbound services. The network port and IP address planning is different for the two scenarios. It is recommended that the scenario where southbound services are isolated from northbound services be used.

  • The static IP address must be used.
  • The IP address must be unique on the live network.
  • The server can communicate with clients.
  • You can plan and configure only one IP address for one network port.
  • In different deployment scenarios, the IP addresses belong to different networks. You need to plan the network plane to which the IP addresses belong based on the network planning table and ensure that the network planes exist.
  • The IP address type can be IPv4 or IPv6, but not dual-stack.
    In the scenario where southbound services are isolated from northbound services, a network port and IP address planning example is as follows.

    The system IP address, heartbeat and replication IP address, and southbound IP address must belong to different network planes.

Table 8-102 Network port plan

Item

Example

NIC

Description

2288H V5 server

Network port 1: eth0

Network port 2: eth1

Network port 3: eth2

Network port 4: eth3
  • Network port 1: service network port of the eSight server, which is used to connect managed devices and the web client
  • Network ports 2 to 4 and extended network port: standby service network ports, which are used to, for example, isolate the southbound and northbound services.
  • Mgmt: iMana/iBMC maintenance network port of Huawei servers
NOTE:

The network port numbers shown in this figure may be different from those displayed on the operating system. After the server is powered on, you are advised to disconnect and connect network cables to check the mapping between physical network ports on the server and network ports displayed in the operating system.

2288X V5 server

Network port 1: eth7

Network port 2: eth6

Network port 3: eth5

Network port 4: eth4

NOTE:

The 2288X V5 server has two onboard network ports and two unavailable network ports. Therefore, the NIC names start from eth4.
Table 8-103 Network port and IP address planning when southbound services are isolated from northbound services

Item

Function

Server

Network Port

Network Plane

Example (IPv4)

System IP address

IP address of the operating system. You can use it to log in to the server to manage and maintain the operating system.

Active server

Network port 1 (eth0; eth 7 for 2288X servers)

The system IP addresses of the active and standby servers and system floating IP address belong to the same network plane.
  • 10.10.10.1/255.255.255.0/10.10.10.254

Standby server

Network port 1 (eth0; eth 7 for 2288X servers)
  • 10.10.10.2/255.255.255.0/10.10.10.254

System floating IP address

Used by eSight to provide services. The IP address is used for communications between the eSight server and web client.

NOTE:

Do not use the floating IP address to access the server.

Active and standby servers

Network port 1 (eth0; eth 7 for 2288X servers)
  • 10.10.10.3/255.255.255.0/10.10.10.254

Heartbeat and replication IP address

Used to detect the status of the network connection and replicate data between the active and standby eSight servers.

Active server

Network port 2 (eth1; eth 6 for 2288X servers)

The network to which the heartbeat and replication IP address belongs is independent of the network plane of the service network and O&M network. In addition, the heartbeat and replication network cannot communicate with the network where devices are located. The heartbeat and replication IP addresses of the active and standby servers belong to the same network plane.
  • 192.168.100.10/255.255.255.0/192.168.100.254

Standby server

Network port 2 (eth1; eth 6 for 2288X servers)
  • 192.168.100.20/255.255.255.0/192.168.100.254

Southbound IP address

Used for communications between the eSight server and devices.

Active server

Network port 3 (eth2; eth 5 for 2288X servers)
  • The southbound and southbound floating IP addresses of the active and standby servers belong to the same network plane.
  • The network plane where the southbound IP address is located must be able to communicate with the network plane where the devices are located.
  • 10.10.11.1/255.255.255.0/10.10.11.254

Standby server

Network port 3 (eth2; eth 5 for 2288X servers)
  • 10.10.11.2/255.255.255.0/10.10.11.254

Southbound floating IP address

Used for communications between the eSight server and devices.

Active and standby servers

Network port 3 (eth2; eth 5 for 2288X servers)
  • 10.10.11.3/255.255.255.0/10.10.11.254
In the scenario where southbound services are not isolated from northbound services, a network port and IP address planning example is as follows.

The system IP address and heartbeat and replication IP address must belong to different network planes.

Table 8-104 Network port and IP address planning when southbound services are not isolated from northbound services

Item

Function

Server

Network Port

Network Plane

Example

System IP address

IP address of the operating system. You can use it to log in to the server to manage and maintain the operating system. Used for communications between the eSight server and devices.

Active server

Network port 1 (eth0; eth 7 for 2288X servers)

The system IP addresses of the active and standby servers and system floating IP address belong to the same network plane.
  • 10.10.10.1/255.255.255.0/10.10.10.254

Standby server

Network port 1 (eth0; eth 7 for 2288X servers)
  • 10.10.10.2/255.255.255.0/10.10.10.254

System floating IP address

Used for communications between the eSight server and client as well as between the eSight server and devices.

Active and standby servers

Network port 1 (eth0; eth 7 for 2288X servers)
  • 10.10.10.3/255.255.255.0/10.10.10.254

Heartbeat and replication IP address

Used to detect the status of the network connection and replicate data between the active and standby eSight servers.

Active server

Network port 2 (eth1; eth 6 for 2288X servers)

The network to which the heartbeat and replication IP address belongs is independent of the network plane of the service network and O&M network. In addition, the heartbeat and replication network cannot communicate with the network where devices are located. The heartbeat and replication IP addresses of the active and standby servers belong to the same network plane.
  • 192.168.100.10/255.255.255.0/192.168.100.254

Standby server

Network port 2 (eth1; eth 6 for 2288X servers)
  • 192.168.100.20/255.255.255.0/192.168.100.254

Installation Path Planning

Table 8-105 Installation path plan

Item

Example

Description

eSight

/opt/eSight
  • The eSight software cannot be installed in the root directory.
  • To ensure successful eSight installation, ensure that the eSight installation path is empty before the installation.
  • The eSight installation directory and its absolute path must contain only letters, digits, hyphens (-), and underscores (_) and must begin with a letter or underscore (_). The absolute path contains a maximum of 50 characters.

User Name and Password Planning

Table 8-106 User and password plan

Item

Default Password

Description

SUSE operating system administrator user root

The password is configured during SUSE Linux installation.

The root user is the default Linux operating system user. It has the highest operation rights of the Linux operating system. This user can control all operating system resources, create other users, assign rights to the users, and use all the functions provided by the operating system. The installation and uninstallation of the eSight server application software must be performed by the root user.

eSight user ossuser on the SUSE operating system

Changeme_123

The ossuser account, automatically created by eSight, performs routine operation and maintenance (O&M) for the eSight server. This user can remotely log in to the server through SSH and upload or download files through SFTP.

GaussDB database administrator user sys

Changeme123

The sys user is a default user provided by the database. It is the system administrator of the database and has the highest rights of the database.

eSight database user commonuser of the GaussDB

Changeme_123

The commonuser user is a database user of the NMS.

eSight administrator user admin

NOTE:

The user login address is https://IP address:31943.

Changeme123

NOTE:

You need to change the password at your first login.

The admin user is the default administrator provided by eSight. This user has the management rights of all devices and operation rights of all eSight clients.

Maintenance tool user sys

NOTE:

The login address of the management plane is https://IP address:31945.

Changeme123

NOTE:

You need to change the password at your first login.

The sys user is the unique user of the maintenance tool. This user can manage the eSight server and perform all operations on the maintenance tool.

Each user must have a unique password.

The password setting must comply with the following rules:

  • The password cannot contain the user name in normal or reverse order.
  • The password ranges from 8 to 32 characters.
  • The same character can be used at most three times.
  • The password must contain at least one uppercase letter (A to Z), one lowercase letter (a to z), and one digit (0 to 9).

Time Zone and Time Planning

Table 8-107 Time zone and time list

Item

Example

Description

Time zone

UTC+08:00

The times and time zones of the active and standby servers must be the same.

Time

14:00

Port Planning

  • For details about eSight server port planning, see eSight Communication Matrix.
    • If unrelated software is installed on the eSight server, port conflicts may occur and eSight may be unavailable.
    • Strictly follow instructions in eSight Communication Matrix to ensure that the operating system is secure and stable and eSight can be used properly.
    • After eSight is upgraded or a patch is installed, perform operations on ports by referring to eSight Communication Matrix.
  • In the EulerOS, eSight automatically creates mappings for ports listed in Table 8-108 during installation, which improves system compatibility.
    Table 8-108 Port mappings

    Source Port

    Mapped Port

    Port Function

    21

    31921

    FTP port

    69

    32182

    TFTP port

    162

    10162

    Alarm port

    514

    32185

    Syslog port

Server RAID Planning

  • If the server is not the default one delivered for eSight, select a proper RAID type based on the number of hard disks configured on the server and Table 8-109. For details about how to plan and configure the RAID, see the server guide.
    Table 8-109 RAID information

    Number of Disks

    Solution

    2

    RAID 1

    3 to 8

    RAID 5 + HotSpare
  • The 2288H V5 servers delivered for eSight have two types: standard-configuration servers and high-configuration servers.
    Table 8-110 RAID planning for 2288H V5 servers

    Server Type

    Number of Disks

    Disk

    RAID

    One-node system 2288H V5 server with standard configurations

    4

    First to third disks

    RAID 5

    Fourth disk

    HotSpare

    One-node system 2288H V5 server with high configurations

    6

    First to fifth disks

    RAID 5

    Sixth disk

    HotSpare
  • The 2288X V5 servers delivered for eSight have two types: standard-configuration servers and high-configuration servers.
    Table 8-111 RAID planning for 2288X V5 servers

    Server Type

    Number of Disks

    Disk

    RAID

    One-node system 2288X V5 server with standard configurations

    2

    First and second disks

    RAID 1

    One-node system 2288X V5 server with high configurations

    6

    First to fifth disks

    RAID 5

    Sixth disk

    HotSpare

Disk Partition Planning

Table 8-112 Disk partition planning

Partition

Capacity

File System

Description

/

50 GB

Ext4

Root directory for installing the operating system.

swap

16 GB

Swap

Swap directory.

/boot/efi

1 GB

FAT

Boot directory.

/tmp

10 GB

Ext4

Directory for storing temporary files.

/var/tmp

5 GB

Ext4

Directory for storing temporary files.

/home

1 GB

Ext4

Home directory of the operating system user.

/var

20 GB

Ext4

Directory for storing dynamic data about the daemon process and other system service processes.

/var/log

10 GB

Ext4

Directory for storing system log data.

/var/log/audit

10 GB

Ext4

Directory for storing audit log data.

/opt

Total remaining space

Ext4

Directory for installing eSight.
Translation
简体中文
Download
Updated: 2021-01-18

Document ID: EDOC1100107088

Views: 5625

Downloads: 201

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Digital Signature File

Digital Signature Authentication Mode
Share
Previous Next
Enterprise APP

Copyright © 2021 Huawei Technologies Co., Ltd. All rights reserved.

You are going to visit :