Logging in and Managing the Cisco Nexus Data Broker

This chapter has details about logging in and managing the Cisco NDB and overview of the new GUI.

Configuring High Availability Clusters

Cisco Nexus Data Broker supports high availability clustering in active/active mode with up to five controllers. To use high availability clustering with Cisco Nexus Data Broker, you must edit the config.ini file for each instance of Cisco Nexus Data Broker.


Note

IPv6 is supported in centralized NDB mode only, it is not supported in Embedded mode.


Note

Cisco NDB supports only 2 node configuration or odd number node configuration. If you configure even number of nodes, the last node is not included in the cluster formation, ensuring odd number of nodes in a setup.

Table 1. Cluster Operation Status

Cluster Indicator

Cluster Status

Recommendation

Green

Operational

Yellow

Some of the cluster nodes are not available

Do not make any changes or add to the existing NDB configuration.

Red

The node is isolated from the cluster.

Do not make any changes or add to the existing NDB configuration.

Note: For two node cluster, you need to override in any one of the cluster node only, to ensure regular operation.

Before you begin

  • All IP addresses must be reachable and capable of communicating with each other.

  • All switches in the cluster must connect to all of the controllers.

  • All controllers must have the same HA clustering configuration information in the config.ini files.

  • All controllers must have the same information in the xnc/configuration/startup directory.

  • If using cluster passwords, all controllers must have the same password configured in the xncjgroups.xml file.

Procedure

Step 1

Open a command window on one of the instances in the cluster.

Step 2

Navigate to the xnc/configuration directory that was created when you installed the software.

Step 3

Use any text editor to open the config.ini file.

Step 4

Locate the following text: 

# HA Clustering configuration (semi-colon-separated IP addresses of all controllers that are part of the cluster.)
# supernodes=<ip1>;<ip2>;<ip3>;<ipn>

Step 5

Example:

IPv4 example. 

# HA Clustering configuration (semi-colon-separated IP addresses of all controllers that are part of the cluster.)
supernodes=10.1.1.1;10.2.1.1;10.3.1.1;10.4.1.1;10.5.1.1

Example:

IPv6 example. 

# HA Clustering configuration (semi-colon-separated IP addresses of all controllers that are part of the cluster.)
supernodes=2001:22:11::1;2001:33::44::1;2001:55:66::1

Step 6

Save the file and exit the editor.

What to do next

(Optional) Use this procedure to configure the delay time for a node and the number of retries.

  1. Open a command window on one of the instances in the cluster.

  2. Navigate to the configuration directory.

  3. Use any text editor to open the xncjgroups.xmlfile.

  4. Locate the following text: 

    FD timeout="3000" max_tries="3"/

  5. Modify the Latency Time value and maximum_tries value.

  6. Save the file and exit the editor.

  7. Repeat the above steps for all the instances of the cluster.

Password Protecting High Availability Clusters

Procedure

Step 1

Open a command window on one of the instances in the cluster.

Step 2

Navigate to the xnc/configuration directory.

Step 3

Use any text editor to open the xncjgroups.xml file.

Step 4

Locate the following text: 

<!-- <AUTH auth_class="org.jgroups.auth.MD5Token" auth_value="ciscoXNC" token_hash="MD5"></AUTH> -->

Step 5

Remove the comments from the AUTH line.

Example:

<AUTH auth_class="org.jgroups.auth.MD5Token" auth_value="ciscoXNC" token_hash="MD5"></AUTH>

Step 6

(Optional) Change the password in the auth_value attribute.

By default, the cluster is protected with the password "ciscoXNC". You can change this password to whatever value you want, you need make the similar changes on all machines in the cluster.

Step 7

Save the file and exit the editor.

Logging in to Cisco Nexus Data Broker GUI

You can login to the Cisco Nexus Data Broher GUI using HTTPS. The default HTTPS web link for the Cisco NDB GUI is https://Nexus_Data_Broker_IP:8443/monitor.


Note

You must manually specify the https:// protocol in your web browser. The controller must also be configured for HTTPS.

Procedure

Step 1

In your web browser, enter the Cisco NDB web link.

Step 2

On the launch page, do the following:

  1. Enter your username and password.

    The default username and password is admin/admin.

  2. Click LOGIN.

Changing Controller Access

An unencrypted (HTTP) access to the GUI and the API to the controller access is disabled by default. You cannot access the controller with the URL http://<host>:8080.

To change the controller access to HTTP, complete the following steps:

Before you begin

Cisco Nexus Data Broker is shipped with a certificate for the HTTPS connection between the Cisco Nexus Data Broker and a browser. You can change to a different certificate.

The script generateWebUIcertificate.sh is available in the ndb/configuration folder. If you execute this script, it moves the shipped certificate to old_keystore and the new certificate is generated in keystore. On the next Cisco Nexus Data Broker restart, this new certificate is used.

Procedure

Step 1

Remove the comment character from the connector for port 8080 in the tomcat-server.xml files in the configuration directory as displayed in the following example: 


<Service name="Catalina">
<!--
<Connector port="8080" protocol="HTTP/1.1"
connectionTimeout="20000"
redirectPort="8443" server="Cisco NDB" enableLookups="false" />
-->
<Connector port="8443" protocol="HTTP/1.1" SSLEnabled="true"
scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS"
keystoreFile="configuration/keystore"
keystorePass="ciscondb" server="Cisco NDB"
connectionTimeout="60000" enableLookups="false" />

Step 2

Restart the controller.

Cisco Nexus Data Broker GUI Overview

The Cisco Nexus Data Broker GUI contains the following tabs and each of these tabs are discussed in detail (as separate chapters) in the subsequent pages of this guide.

For details about the header icons, see Header.

Components of a screen of the Cisco Nexus Data Broker

When you click a tab/ sub-tab, the current information of the tab is displayed in a table.

A typical screen representing one of the tabs of the Release 3.10 Cisco NDB GUI is displayed here:

  • 1—Name of the tab/sub-tab.

  • 2—Use the Filter by attributes bar to filter the displayed table which has the details of the selected tab. Choose the attribute, operator and filter-value.

    You can also filter the displayed table based on the filter icon that appears when you hover over an element of the table.

  • 3—Use the Refresh icon to refresh the displayed details and get the latest information about the tab/ sub-tab.

  • 4—Use the Column Customization icon to select the columns you want to see in the displayed table.

  • 5—Click the Actions button to see the available actions for the screen.

  • 6—From the Rows drop-down list, select the number of rows to be displayed in the table.

Header

This section provides an overview of the Cisco Nexus Data Broker GUI Header (upper right corner) icons:

Table 2. Cisco Nexus Data Broker Header Icons

Icon

Description

Cluster

Displays the role of the current NDB controller instance- either Primary (P) or Member (M). The IP addresses of the primary and member(s) are displayed; the IP address of the primary cluster is denoted with an (*).

If NDB controller is not in a cluster, Stand-alone is displayed.

Slice

Displays the slice name the user is currently logged in to.

From the drop-down list, select another slice to change the network view.

Figure 1. Create
Provides quick navigation to often-used configuration and administration procedures.
Figure 2. Alarm

Displays the number of inconsistent NDB devices. Click the Alarm icon; you are directed to the Flow Management tab for details.

Figure 3. Help Menu-Bar

Displays the following options:

  • What's New—Displays new features for the latest release.

  • Help—Displays online help content.

Figure 4. System Tools Menu-Bar

Provides the following options:

  • Download Log—Enables you to download log files to your local machine.

  • Northbound API—takes you to the Swagger UI for details about NDB REST APIs.

  • Session Timeout—Enables you to set the session timeout value.

  • About Nexus Data Broker—Displays NDB details such as, build and version.

Figure 5. User Profile Menu-Bar

Provides the following options:

  • Welcome User—Displays the current user of the GUI.

  • Change Password—Enables you to change the password of the current user.

  • Logout—Enables you to logout of the GUI.