Installing Cisco MDS NX-OS and Fabric Manager
The Cisco Fabric Manager is a set of network management tools that supports Secure Simple Network Management Protocol version 3 (SNMPv3). It provides a graphical user interface (GUI) that displays real-time views of your network fabrics, and lets you manage the configuration of Cisco MDS 9000 Family devices and third-party switches.
This chapter describes how to install Cisco Fabric Manager.
This chapter contains the following sections:
•Starting a Switch in the Cisco MDS 9000 Family
•Initial Setup Routine
•Accessing the Switch
•Where Do You Go Next?
•About Cisco Fabric Manager
•Installing the Management Software
•Upgrading the Management Software
•Upgrading Fabric Manager Server and Fabric Manager Standalone Version Using the Fabric Manager Update Installer
•Integrating Cisco Fabric Manager with Other Management Tools
•Running Fabric Manager Behind a Firewall
•Uninstalling the Management Software
Starting a Switch in the Cisco MDS 9000 Family
The following procedure is a review of the tasks you should have completed during hardware installation, including starting up the switch. These tasks must be completed before you can configure the switch.
Note You must use the CLI for initial switch start up.
Before you can configure a switch, follow these steps:
Step 1 Verify the following physical connections for the new Cisco MDS 9000 Family switch:
•The console port is physically connected to a computer terminal (or terminal server).
•The management 10/100 Ethernet port (mgmt0) is connected to an external hub, switch, or router.
Refer to the Cisco MDS 9000 Family Hardware Installation Guide (for the required product) for more information.
Tip Save the host ID information for future use (for example, to enable licensed features). The host ID information is provided in the Proof of Purchase document that accompanies the switch.
Step 2 Verify that the default console port parameters are identical to those of the computer terminal (or terminal server) attached to the switch console port:
•9600 baud
•8 data bits
•1 stop bit
•No parity
Step 3 Power on the switch. The switch boots automatically and the switch#
prompt appears in your terminal window.
Initial Setup Routine
The first time that you access a switch in the Cisco MDS 9000 Family using the CLI, it runs a setup program that prompts you for the IP address and other configuration information necessary for the switch to communicate over the supervisor module Ethernet interface. This information is required to configure and manage the switch.
Note The IP address can only be configured from the CLI. When you power up the switch for the first time, assign the IP address. After you perform this step, the Cisco MDS 9000 Family Fabric Manager can reach the switch through the management port.
Preparing to Configure the Switch
Before you configure a switch in the Cisco MDS 9000 Family for the first time, you need the following information:
•Administrator password, including:
–Creating a password for the administrator (required).
–Creating an additional login account and password (optional).
•IP address for the switch management interface—The management interface can be an out-of-band Ethernet interface or an in-band Fibre Channel interface (recommended).
•Subnet mask for the switch's management interface (optional).
•IP addresses, including:
–Destination prefix, destination prefix subnet mask, and next hop IP address, if you want to enable IP routing. Also, provide the IP address of the default network (optional).
–Otherwise, provide an IP address of the default gateway (optional).
•SSH service on the switch—To enable this optional service, select the type of SSH key (dsa/rsa/rsa1) and number of key bits (768 to 2048).
•DNS IP address (optional).
•Default domain name (optional).
•NTP server IP address (optional).
•SNMP community string (optional).
•Switch name—This is your switch prompt (optional).
Note Be sure to configure the IP route, the IP default network address, and the IP default gateway address to enable SNMP access. If IP routing is enabled, the switch uses the IP route and the default network IP address. If IP routing is disabled, the switch uses the default gateway IP address.
Note You should verify that the Fabric Manager Server hostname entry exists on the DNS server, unless the Fabric Manager Server is configured to bind to a specific interface during installation.
Default Login
All Cisco MDS 9000 Family switches have the network administrator as a default user (admin). You cannot change the default user at any time (see the "Role-Based Authorization" section on page 39-1).
You have an option to enforce secure password for any switch in the Cisco MDS 9000 Family. If a password is trivial (short, easy-to-decipher), your password configuration is rejected. Be sure to configure a secure password (see the "User Accounts" section on page 39-10). If you configure and subsequently forget this new password, you have the option to recover this password (see the "Recovering the Administrator Password" section on page 39-20).
Note Starting from NX-OS Release 4.x, secure password is enforced on all Cisco MDS 9000 Family switches unless disabled by the user.
Setup Options
The setup scenario differs based on the subnet to which you are adding the new switch. You must configure a Cisco MDS 9000 Family switch with an IP address to enable management connections from outside of the switch.
Note Some concepts such as out-of-band management and in-band management are briefly explained here. These concepts are explained in more detail in subsequent chapters.
•Out-of-band management—This feature provides a connection to the network through a supervisor module front panel Ethernet port (see Figure 2-1).
•In-band management—This feature provides IP over Fibre Channel (IPFC) to manage the switches. The in-band management feature is transparent to the network management system (NMS). Instead of conventional Ethernet physical media, switches in the Cisco MDS 9000 Family use IPFC as the transport mechanism (see Figure 2-1 and Chapter 51, "Configuring IP Services").
Figure 2-1 Management Access to Switches
Assigning Setup Information
This section describes how to initially configure the switch for both out-of-band and in-band management.
Note Press Ctrl-C at any prompt to skip the remaining configuration options and proceed with what is configured until that point. Entering a new password for the administrator is a requirement and cannot be skipped.
Tip If you do not wish to answer a previously configured question, or if you wish to skip answers to any questions, press Enter. If a default answer is not available (for example, switch name), the switch uses what was previously configured and skips to the next question.
Configuring Out-of-Band Management
Note You can configure both in-band and out-of-band configuration together by entering Yes in both Step 11c and Step 11d in the following procedure.
To configure the switch for first time out-of-band access, follow these steps:
Step 1 Power on the switch. Switches in the Cisco MDS 9000 Family boot automatically.
Do you want to enforce secure password standard (Yes/No)?
Step 2 Enter Yes to enforce secure password.
a. Enter the administrator password
Enter the password for admin: 2008asdf*lkjh17
b. Confirm the administrator password.
Confirm the password for admin: 2008asdf*lkjh17
Tip If a password is trivial (short, easy to decipher), your password configuration is rejected. Be sure to configure a secure password as shown in the sample configuration. Passwords are case-sensitive. You must explicitly configure a password that meets the requirements listed in the "User Accounts" section on page 39-10.
Step 3 Enter yes to enter the setup mode.
Note This setup utility will guide you through the basic configuration of the system. Setup configures only enough connectivity for management of the system.
Please register Cisco MDS 9000 Family devices promptly with your supplier. Failure to
register may affect response times for initial service calls. MDS devices must be
registered to receive entitled support services.
Press Enter anytime you want to skip any dialog. Use ctrl-c at anytime to skip away
remaining dialogs.
Would you like to enter the basic configuration dialog (yes/no): yes
The setup utility guides you through the basic configuration process. Press Ctrl-C at any prompt to end the configuration process.
Step 4 Enter the new password for the administrator (admin is the default).
Enter the password for admin: admin
Step 5 Enter yes (no is the default) to create additional accounts.
Create another login account (yes/no) [n]: yes
While configuring your initial setup, you can create an additional user account (in the network-admin role) besides the administrator's account. See the "Role-Based Authorization" section on page 39-1 for information on default roles and permissions.
Note User login IDs must contain non-numeric characters.
a. Enter the user login ID [administrator].
Enter the user login ID: user_name
b. Enter the user password.
Enter the password for user_name: user-password
c. Confirm the user password for
Confirm the password for user_name: user-password
Step 6 Enter yes (no is the default) to create an SNMPv3 account.
Configure read-only SNMP community string (yes/no) [n]: yes
a. Enter the user name (admin is the default).
SNMPv3 user name [admin]: admin
b. Enter the SNMPv3 password (minimum of eight characters). The default is admin123.
SNMPv3 user authentication password: admin_pass
Step 7 Enter yes (no is the default) to configure the read-only or read-write SNMP community string.
Configure read-write SNMP community string (yes/no) [n]: yes
a. Enter the SNMP community string.
SNMP community string: snmp_community
Step 8 Enter a name for the switch.
Note The switch name is limited to 32 alphanumeric characters. The default is switch.
Enter the switch name: switch_name
Step 9 Enter yes (yes is the default) to configure out-of-band management.
Continue with Out-of-band (mgmt0) management configuration? [yes/no]: yes
a. Enter the mgmt0 IP address.
Mgmt0 IPv4 address: ip_address
b. Enter the mgmt0 subnet mask.
Mgmt0 IPv4 netmask: subnet_mask
Step 10 Enter yes (yes is the default) to configure the default gateway (recommended).
Configure the default-gateway: (yes/no) [y]: yes
a. Enter the default gateway IP address.
IPv4 address of the default gateway: default_gateway
Step 11 Enter yes (no is the default) to configure advanced IP options such as in-band management, static routes, default network, DNS, and domain name.
Configure Advanced IP options (yes/no)? [n]: yes
a. Enter no (no is the default) at the in-band management configuration prompt.
Continue with in-band (VSAN1) management configuration? (yes/no) [no]: no
b. Enter yes (no is the default) to enable IP routing capabilities.
Enable the ip routing? (yes/no) [n]: yes
c. Enter yes (no is the default) to configure a static route (recommended).
Configure static route: (yes/no) [n]: yes
Enter the destination prefix.
Destination prefix: dest_prefix
Type the destination prefix mask.
Destination prefix mask: dest_mask
Type the next hop IP address.
Next hop ip address: next_hop_address
Note Be sure to configure the IP route, the default network IP address, and the default gateway IP address to enable SNMP access. If IP routing is enabled, the switch uses the IP route and the default network IP address. If IP routing is disabled, the switch uses the default gateway IP address.
d. Enter yes (no is the default) to configure the default network (recommended).
Configure the default network: (yes/no) [n]: yes
Enter the default network IP address.
Note The default network IP address is the destination prefix provided in Step 11c .
Default network IP address [dest_prefix]: dest_prefix
e. Enter yes (no is the default) to configure the DNS IP address.
Configure the DNS IPv4 address? (yes/no) [n]: yes
Enter the DNS IP address.
DNS IPv4 address: name_server
f. Enter yes (default is no) to configure the default domain name.
Configure the default domain name? (yes/no) [n]: yes
Enter the default domain name.
Default domain name: domain_name
Step 12 Enter yes (no is the default) to enable Telnet service.
Enable the telnet server? (yes/no) [n]: yes
Step 13 Enter yes (no is the default) to enable the SSH service.
Enabled SSH server? (yes/no) [n]: yes
Step 14 Enter the SSH key type (see the "Generating the SSH Server Key Pair" section on page 39-17) that you would like to generate.
Type the SSH key you would like to generate (dsa/rsa)? dsa
Step 15 Enter the number of key bits within the specified range.
Enter the number of key bits? (768 to 2048): 768
Step 16 Enter yes (no is the default) to configure the NTP server.
Configure NTP server? (yes/no) [n]: yes
Configure clock? (yes/no) [n] :yes
Configure clock? (yes/no) [n] :yes
Configure timezone? (yes/no) [n] :yes
Configure summertime? (yes/no) [n] :yes
Configure the ntp server? (yes/no) [n] : yes
a. Enter the NTP server IP address.
NTP server IP address: ntp_server_IP_address
Step 17 Enter noshut (shut is the default) to configure the default switch port interface to the shut state.
Configure default switchport interface state (shut/noshut) [shut]: noshut
Step 18 Enter on (on is the default) to configure the switch port trunk mode.
Configure default switchport trunk mode (on/off/auto) [on]: on
Step 19 Enter no (no is the default) to configure switchport port mode F.
Configure default switchport port mode F (yes/no) [n] : no
Step 20 Enter permit (deny is the default) to deny a default zone policy configuration.
Configure default zone policy (permit/deny) [deny]: permit
Permits traffic flow to all members of the default zone.
Step 21 Enter yes (no is the default) to disable a full zone set distribution (see the "Zone Set Distribution" section on page 30-31). Disables the switch-wide default for the full zone set distribution feature.
Enable full zoneset distribution (yes/no) [n]: yes
You see the new configuration. Review and edit the configuration that you have just entered.
Step 22 Enter no (no is the default) if you are satisfied with the configuration.
The following configuration will be applied:
username admin password admin_pass role network-admin
username user_name password user_pass role network-admin
snmp-server community snmp_community ro
ip address ip_address subnet_mask
ip route dest_prefix dest_mask dest_address
ip default-network dest_prefix
ip default-gateway default_gateway
ip name-server name_server
ip domain-name domain_name
ntp server ipaddr ntp_server
system default switchport shutdown
system default switchport trunk mode on
system default port-channel auto-create
zone default-zone permit vsan 1-4093
zoneset distribute full vsan 1-4093
Would you like to edit the configuration? (yes/no) [n]: no
Step 23 Enter yes (yes is default) to use and save this configuration:
Use this configuration and save it? (yes/no) [y]: yes
Caution
If you do not save the configuration at this point, none of your changes are updated the next time the switch is rebooted. Type
yes to save the new configuration. This ensures that the kickstart and system images are also automatically configured (see
Chapter 15, "Software Images").
Configuring In-Band Management
The in-band management logical interface is VSAN 1. This management interface uses the Fibre Channel infrastructure to transport IP traffic. An interface for VSAN 1 is created on every switch in the fabric. Each switch should have its VSAN 1 interface configured with an IP address in the same subnetwork. A default route that points to the switch providing access to the IP network should be configured on every switch in the Fibre Channel fabric (see Chapter 26, "Configuring and Managing VSANs").
Note You can configure both in-band and out-of-band configuration together by entering Yes in both Step 9c and Step 9d in the following procedure.
To configure a switch for first time in-band access, follow these steps:
Step 1 Power on the switch. Switches in the Cisco MDS 9000 Family boot automatically.
Step 2 Enter the new password for the administrator.
Enter the password for admin: 2004asdf*lkjh18
Tip If a password is trivial (short, easy-to-decipher), your password configuration is rejected. Be sure to configure a strong password as shown in the sample configuration. Passwords are case-sensitive. You must explicitly configure a password that meets the requirements listed in the "User Accounts" section on page 39-10.
Step 3 Enter yes to enter the setup mode.
This setup utility will guide you through the basic configuration of the system. Setup
configures only enough connectivity for management of the system.
Please register Cisco MDS 9000 Family devices promptly with your supplier. Failure to
register may affect response times for initial service calls. MDS devices must be
registered to receive entitled support services.
Press Enter incase you want to skip any dialog. Use ctrl-c at anytime to skip away
remaining dialogs.
Would you like to enter the basic configuration dialog (yes/no): yes
The setup utility guides you through the basic configuration process. Press Ctrl-C at any prompt to end the configuration process.
Step 4 Enter no (no is the default) if you do not wish to create additional accounts.
Create another login account (yes/no) [no]: no
Step 5 Configure the read-only or read-write SNMP community string.
a. Enter no (no is the default) to avoid configuring the read-only SNMP community string.
Configure read-only SNMP community string (yes/no) [n]: no
Step 6 Enter a name for the switch.
Note The switch name is limited to 32 alphanumeric characters. The default is switch.
Enter the switch name: switch_name
Step 7 Enter no (yes is the default) at the configuration prompt to configure out-of-band management.
Continue with Out-of-band (mgmt0) management configuration? [yes/no]: no
Step 8 Enter yes (yes is the default) to configure the default gateway.
Configure the default-gateway: (yes/no) [y]: yes
a. Enter the default gateway IP address.
IP address of the default gateway: default_gateway
Step 9 Enter yes (no is the default) to configure advanced IP options such as in-band management, static routes, default network, DNS, and domain name.
Configure Advanced IP options (yes/no)? [n]: yes
a. Enter yes (no is the default) at the in-band management configuration prompt.
Continue with in-band (VSAN1) management configuration? (yes/no) [no]: yes
Enter the VSAN 1 IP address.
VSAN1 IP address: ip_address
Enter the subnet mask.
VSAN1 IP net mask: subnet_mask
b. Enter no (yes is the default) to enable IP routing capabilities.
Enable ip routing capabilities? (yes/no) [y]: no
c. Enter no (yes is the default) to configure a static route.
Configure static route: (yes/no) [y]: no
d. Enter no (yes is the default) to configure the default network.
Configure the default-network: (yes/no) [y]: no
e. Enter no (yes is the default) to configure the DNS IP address.
Configure the DNS IP address? (yes/no) [y]: no
f. Enter no (no is the default) to skip the default domain name configuration.
Configure the default domain name? (yes/no) [n]: no
Step 10 Enter no (yes is the default) to disable Telnet service.
Enable the telnet service? (yes/no) [y]: no
Step 11 Enter yes (no is the default) to enable the SSH service.
Enabled SSH service? (yes/no) [n]: yes
Step 12 Enter the SSH key type (see the "Generating the SSH Server Key Pair" section on page 39-17) that you would like to generate.
Type the SSH key you would like to generate (dsa/rsa/rsa1)? rsa
Step 13 Enter the number of key bits within the specified range.
Enter the number of key bits? (768 to 1024): 1024
Step 14 Enter no (no is the default) to configure the NTP server.
Configure NTP server? (yes/no) [n]: no
Step 15 Enter shut (shut is the default) to configure the default switch port interface to the shut state.
Configure default switchport interface state (shut/noshut) [shut]: shut
Note The management Ethernet interface is not shut down at this point—only the Fibre Channel, iSCSI, FCIP, and Gigabit Ethernet interfaces are shut down.
Step 16 Enter auto (off is the default) to configure the switch port trunk mode.
Configure default switchport trunk mode (on/off/auto) [off]: auto
Step 17 Enter deny (deny is the default) to deny a default zone policy configuration.
Configure default zone policy (permit/deny) [deny]: deny
Denies traffic flow to all members of the default zone.
Step 18 Enter no (no is the default) to disable a full zone set distribution (see the "Zone Set Distribution" section on page 30-31).
Enable full zoneset distribution (yes/no) [n]: no
Disables the switch-wide default for the full zone set distribution feature.
You see the new configuration. Review and edit the configuration that you have just entered.
Step 19 Enter no (no is the default) if you are satisfied with the configuration.
The following configuration will be applied:
username admin password admin_pass role network-admin
snmp-server community snmp_community rw
ip address ip_address subnet_mask
ip default-gateway default_gateway
no system default switchport shutdown
system default switchport trunk mode auto
no zone default-zone permit vsan 1-4093
no zoneset distribute full vsan 1-4093
Would you like to edit the configuration? (yes/no) [n]: no
Step 20 Enter yes (yes is default) to use and save this configuration.
Use this configuration and save it? (yes/no) [y]: yes
Caution
If you do not save the configuration at this point, none of your changes are updated the next time the switch is rebooted. Type
yes to save the new configuration. This ensures that the kickstart and system images are also automatically configured (see
Chapter 15, "Software Images").
Using the setup Command
To make changes to the initial configuration at a later time, you can issue the setup command in EXEC mode.
---- Basic System Configuration Dialog ----
This setup utility will guide you through the basic configuration of
the system. Setup configures only enough connectivity for management
*Note: setup always assumes a predefined defaults irrespective
of the current system configuration when invoked from CLI.
Press Enter incase you want to skip any dialog. Use ctrl-c at anytime
to skip away remaining dialogs.
Would you like to enter the basic configuration dialog (yes/no): yes
The setup utility guides you through the basic configuration process.
Accessing the Switch
After initial configuration, you can access the switch in one of three ways (see Figure 2-2):
•Serial console access—You can use a serial port connection to access the CLI.
•In-band IP (IPFC) access—You can use Telnet or SSH to access a switch in the Cisco MDS 9000 Family or use Cisco MDS 9000 Fabric Manager to access the switch.
•Out-of-band (10/100BASE-T Ethernet) access—You can use Telnet or SSH to access a switch in the Cisco MDS 9000 Family or use Cisco MDS 9000 Fabric Manager to access the switch.
Figure 2-2 Switch Access Options
Where Do You Go Next?
After reviewing the default configuration, you can change it or perform other configuration or management tasks. The initial setup can only be performed at the CLI. However, you can continue to configure other software features, or access the switch after initial configuration by using either the CLI or the Device Manager and Fabric Manager applications.
To use the CLI, refer to the Cisco MDS 9000 Family CLI Configuration Guide.
About Cisco Fabric Manager
The Cisco Fabric Manager provides an alternative to the command-line interface (CLI) for most switch configuration commands. For information on using the CLI to configure a Cisco MDS 9000 Family switch, refer to the Cisco MDS 9000 Family CLI Configuration Guide or the Cisco MDS 9020 Switch Configuration Guide and Command Reference Guide. For details on managing switches running Cisco FabricWare, see the "Managing Cisco FabricWare with Fabric Manager" section on page D-3.
In addition to complete configuration and status monitoring capabilities for Cisco MDS 9000 switches, Fabric Manager provides powerful Fibre Channel troubleshooting tools. These in-depth health and configuration analysis capabilities leverage unique MDS 9000 switch capabilities: Fibre Channel Ping and Traceroute.
The Cisco Fabric Manager includes these management applications:
•Fabric Manager (client and server)
•Device Manager
•Performance Manager
•Fabric Manager Web Server
Fabric Manager Server
The Fabric Manager Server component must be started before running Fabric Manager. On a Windows PC, the Fabric Manager Server is installed as a service. This service can then be administered using the Windows Services in the Control Panel. Fabric Manager Server is responsible for discovery of the physical and logical fabric, and for listening for SNMP traps, syslog messages, and Performance Manager threshold events. For more information, see Chapter 3, "Fabric Manager Server."
Fabric Manager Client
The Fabric Manager Client component displays a map of your network fabrics, including Cisco MDS 9000 Family switches, third-party switches, hosts, and storage devices. The Fabric Manager Client provides multiple menus for accessing the features of the Fabric Manager Server. For more information, see Chapter 5, "Fabric Manager Client."
Fabric Manager Server Proxy Services
The Fabric Manager Client and Device Manager use SNMP to communicate with the Fabric Manager Server. In typical configurations, the Fabric Manager Server may be installed behind a firewall. The SNMP proxy service available in Cisco Fabric Manager Release 2.1(1a) or later provides a TCP-based transport proxy for these SNMP requests. The SNMP proxy service allows you to block all UDP traffic at the firewall and configure Fabric Manager Client to communicate over a configured TCP port.
Fabric Manager uses the CLI for managing some features on the switches. These management tasks are used by Fabric Manager and do not use the proxy services. Your firewall must remain open for CLI access for the following features:
•External and internal loopback test
•Flash files
•Create CLI user
•Security - ISCSI users
•Show image version
•Show tech
•Switch resident reports (syslog, accounting)
•Zone migration
•Show cores
If you are using the SNMP proxy service and another application on your server is using port 9198, you need to modify your workstation settings.
Note The MDS switch always checks the local SNMP users before the remote AAA users, unlike the CLI.
To modify a Windows workstation, follow these steps:
Step 1 Open Internet Explorer and select Tools > Internet Options.
You see the Internet Options dialog box.
Step 2 Select the Connections tab and click LAN Settings.
You see the LAN Settings dialog box.
Step 3 Check the Use a Proxy Server for your LAN check box and click Advanced.
Step 4 Add your server IP Address or local host under the Exceptions section.
Step 5 Click OK to save your changes.
See the "Running Fabric Manager Behind a Firewall" section.
Device Manager
The Device Manager provides two views of a single switch:
•Device View displays a graphic representation of the switch configuration and provides access to statistics and configuration information.
•Summary View displays a summary of xE ports (Inter-Switch Links), Fx ports (fabric ports), and Nx ports (attached hosts and storage) on the switch, as well as Fibre Channel and IP neighbor devices. Summary or detailed statistics can be charted, printed, or saved to a file in tab-delimited format. See Chapter 6, "Device Manager."
Performance Manager
Performance Manager presents detailed traffic analysis by capturing data with SNMP. This data is compiled into various graphs and charts that can be viewed with any web browser. See Chapter 58, "Performance Monitoring."
Fabric Manager Web Server
The Fabric Manager Web Server allows operators to monitor and obtain reports for MDS events, performance, and inventory from a remote location using a web browser. For information on installing and using Fabric Manager Web Server, see Chapter 7, "Fabric Manager Web Client."
Cisco MDS 9000 Switch Management
The Cisco MDS 9000 Family of switches can be accessed and configured in many different ways and supports standard management protocols. Table 2-1 lists the management protocols that Fabric Manager supports to access, monitor, and configure the Cisco MDS 9000 Family of switches.
Table 2-1 Supported Management Protocols
|
|
Telnet/SSH |
Provides remote access to the CLI for a Cisco MDS 9000 switch. |
FTP/SFTP/TFTP, SCP |
Copies configuration and software images between devices. |
SNMPv1, v2c, and v3 |
Includes over 80 distinct Management Information Bases (MIBs). Cisco MDS 9000 Family switches support SNMP version 1, 2, and 3 and RMON V1 and V2. RMON provides advanced alarm and event management, including setting thresholds and sending notifications based on changes in device or network behavior. By default, the Cisco Fabric Manager communicates with Cisco MDS 9000 Family switches using SNMPv3, which provides secure authentication using encrypted user names and passwords. SNMPv3 also provides the option to encrypt all management traffic. |
HTTP/HTTPS |
Includes HTTP and HTTPS for web browsers to communicate with Fabric Manager Web Services and for the distribution and installation of the Cisco Fabric Manager software. It is not used for communication between the Cisco Fabric Manager Server and Cisco MDS 9000 Family switches. |
XML/CIM over HTTP/HTTPS |
Includes CIM server support for designing storage area network management applications to run on Cisco SAN-OS and NX-OS. |
ANSI T11 FC-GS-3 |
Provides Fibre Channel-Generic Services (FC-GS-3) in the defining management servers in the Fabric Configuration Server (FCS). Fabric Manager uses the information provided by FCS on top of the information contained in the Name Server database and in the Fibre Channel Shortest Path First (FSPF) topology database to build a detailed topology view and collect information for all the devices building the fabric. |
Storage Management Solutions Architecture
Management services required for the storage environment can be divided into five layers, with the bottom layer being closest to the physical storage network equipment, and the top layer managing the interface between applications and storage resources.
Of these five layers of storage network management, Cisco Fabric Manager provides tools for device (element) management and fabric management. In general, the Device Manager is most useful for device management (a single switch), while Fabric Manager is more efficient for performing fabric management operations involving multiple switches.
Tools for upper-layer management tasks can be provided by Cisco or by third-party storage and network management applications. The following summarizes the goals and function of each layer of storage network management:
•Device management provides tools to configure and manage a device within a system or a fabric. You use device management tools to perform tasks on one device at a time, such as initial device configuration, setting and monitoring thresholds, and managing device system images or firmware.
•Fabric management provides a view of an entire fabric and its devices. Fabric management applications provide fabric discovery, fabric monitoring, reporting, and fabric configuration.
•Resource management provides tools for managing resources such as fabric bandwidth, connected paths, disks, I/O operations per second (IOPS), CPU, and memory. You can use Fabric Manager to perform some of these tasks.
•Data management provides tools for ensuring the integrity, availability, and performance of data. Data management services include redundant array of independent disks (RAID) schemes, data replication practices, backup or recovery requirements, and data migration. Data management capabilities are provided by third-party tools.
•Application management provides tools for managing the overall system consisting of devices, fabric, resources, and data from the application. Application management integrates all these components with the applications that use the storage network. Application management capabilities are provided by third-party tools.
In-Band Management and Out-of-Band Management
Cisco Fabric Manager requires an out-of-band (Ethernet) connection to at least one Cisco MDS 9000 Family switch. You need either mgmt0 or IP over Fibre Channel (IPFC) to manage the fabric.
mgmt0
The out-of-band management connection is a 10/100 Mbps Ethernet interface on the supervisor module, labeled mgmt0. The mgmt0 interface can be connected to a management network to access the switch through IP over Ethernet. You must connect to at least one Cisco MDS 9000 Family switch in the fabric through its Ethernet management port. You can then use this connection to manage the other switches using in-band (Fibre Channel) connectivity. Otherwise, you need to connect the mgmt0 port on each switch to your Ethernet network.
Each supervisor module has its own Ethernet connection; however, the two Ethernet connections in a redundant supervisor system operate in active or standby mode. The active supervisor module also hosts the active mgmt0 connection. When a failover event occurs to the standby supervisor module, the IP address and media access control (MAC) address of the active Ethernet connection are moved to the standby Ethernet connection.
IPFC
You can also manage switches on a Fibre Channel network using an in-band IP connection. The Cisco MDS 9000 Family supports RFC 2625 IP over Fibre Channel, which defines an encapsulation method to transport IP over a Fibre Channel network.
IPFC encapsulates IP packets into Fibre Channel frames so that management information can cross the Fibre Channel network without requiring a dedicated Ethernet connection to each switch. This feature allows you to build a completely in-band management solution.
Installing the Management Software
To install the software for the first time, or if you want to update or reinstall the software, access the supervisor module with a web browser. Click the Install links on the web page that is displayed. The software running on your workstation is verified to make sure you are running the most current version of the software. If it is not current, the most recent version is downloaded and installed on your workstation.
Note Before upgrading or uninstalling Fabric Manager or Device Manager, make sure any instances of these applications have been shut down.
Installation options include:
•Upgrade—The installer detects your current version of Fabric Manager and Device Manager, and it provides the option to upgrade. The default is to upgrade to the latest version of Fabric Manager or Device Manager.
•Uninstall—If you are downgrading from Fabric Manager 2.x or later to Fabric Manager 1.3x or earlier, use the Uninstall batch file or shell script. Do not delete the MDS 9000 folder as this might prevent your installation from being upgraded in the future.
Note We recommend that you install the latest version of the Fabric Manager applications. Fabric Manager is backward-compatible with the Cisco MDS SAN-OS and Cisco FabricWare software running on the switches. When upgrading, upgrade the Fabric Manager software first, and then upgrade the Cisco MDS SAN-OS or NX-OS or Cisco FabricWare software on the switch.
Before You Install
Before you can access the Cisco Fabric Manager, you must complete the following tasks:
•Install a supervisor module on each switch that you want to manage.
•Configure the supervisor module with the following values using the setup routine or the CLI:
–IP address assigned to the mgmt0 interface
–SNMP credentials (v3 user name and password or v1/v2 communities), maintaining the same user name and password for all the switches in the fabric
Cisco MDS SAN-OS Release 2.x, 3.x, and NX-OS 4.1(3a) supports AAA authentication using RADIUS, TACACS, or local SNMP users.
The Cisco Device Manager software executable files reside on each supervisor module of each Cisco MDS 9000 Family switch running Cisco MDS SAN-OS or NX-OS software in your network. The supervisor module provides an HTTP server that responds to browser requests and distributes the software to Windows or UNIX network management stations. You can also find Cisco Fabric Manager software on Cisco.com at the following website:
http://cisco.com/cgi-bin/tablebuild.pl/mds-fm
Supported Software
Note For the latest information on supported software, refer to the Cisco MDS 9000 Family Release Notes for Cisco MDS NX-OS Release 4.1(3a).
Cisco Fabric Manager and Cisco Device Manager have been tested with the following software:
•Operating Systems
–Windows 2003 SP2, Windows XP SP2, Windows XP SP3, Windows Vista SP1 (Enterprise edition)
–Red Hat Enterprise Linux AS Release 4
–Solaris (SPARC) 8, 9 and 10
–VMWare ESX Server 3.5
Note We support only Windows 2003 SP2 VM created on VMWare ESX Server 3.5
•Java
–Sun JRE and JDK 1.5(x) and 1.6(x) is supported
–Java Web Start 1.5 and 1.6
Note Do not use Java 1.6 Update 13
•Browsers
–Internet Explorer 6.x and 7.0
Note Internet Explorer 7.0 is not supported on Windows 2000 SP4.
–Firefox 1.5 and 2.0
–Mozilla 1.7 (packaged with Solaris 9)
•Databases
–Oracle Database 10g Express, Oracle 10g Enterprise Edition
–Oracle 11g Enterprise Edition
–PostgreSQL 8.2 (Windows and Red Hat Enterprise Linux AS Release 4)
–PostgreSQL 8.1 (Solaris 8, 9 and 10)
•Security
–Cisco ACS 3.1 and 4.0
–PIX Firewall
–IP Tables
–SSH v2
–Global Enforce SNMP Privacy Encryption
–HTTPS
Java Database Connectivity
Java database connectivity (JDBC) is the JavaSoft specification of a standard application programming interface (API) that allows Java programs to access database management systems.
A JDBC driver is a software component enabling a Java application to interact with a database. Fabric Manager uses Oracle JDBC drivers ojdbc14.jar and ojdbc14.jar to access the Oracle database and store data.
You can download the recommended version (10.2.0.1.0) of the ojdbc14.jar file, from the following link:
http://www.oracle.com/technology/software/tech/java/sqlj_jdbc/htdocs/jdbc_10201.html
Alternatively, if you have access to the system where Oracle is installed in your environment, you can find the jar file in the Oracle installation directory under ORACLE_HOME\jdbc\lib\.
Minimum Hardware Requirements
For a PC running Fabric Manager Server on large fabrics (1000 or more end devices), we recommend you use a Dual Core/Dual CPU high-speed system with 2 GB of RAM and 10 GB of free disk space.
Upgrading Fabric Manager in Cisco SAN-OS Releases Prior to 3.1(2b)
When you install Cisco SAN-OS 3.2(1), data is migrated from the Hypersonic HSQL database to either the PostgreSQL database or Oracle Database 10g Express during the installation. To install the PostgreSQL database on Windows, click the FM Installer link on the CD. To install Oracle Database 10g Express, follow the instructions in the "Installing Oracle" section.
Note If you are upgrading a previous installation of Fabric Manager Server, be sure the previous installation of the database is running. Do not uninstall the previous version. If the previous version is uninstalled, the database will not be migrated and your server settings will not be preserved. After you ensure that the previous installation is running, follow the steps listed in the "Installing Fabric Manager" section. Before beginning the upgrade, you must close Fabric Manager and Device Manager.
Upgrading Fabric Manager in Cisco SAN-OS Releases 3.1(2b) and Later to 3.2(1)
When you install Cisco SAN-OS 3.2(1), data is migrated from the Hypersonic HSQL database to either the PostgreSQL database or Oracle Database 10g Express during the installation. Data is also migrated from Oracle to Oracle.
Note If you migrate the database from Oracle to Oracle, the schema is updated as required by Cisco SAN-OS 3.2(1).
To install the PostgreSQL database on Windows, click the FM Installer link on the CD. To install Oracle Database 10g Express, follow the instructions in the "Installing Oracle" section.
Installing the Database
Before you install Fabric Manager, you must install a database. As of Cisco MDS NX-OS Release 4.1(1) and later, Fabric Manager is packaged with PostgreSQL and Oracle Database 10g Express databases. You can install the database of your choice using Fabric Manager from the CD-ROM or from Cisco.com. If the database is present, the Fabric Manager installer will upgrade it to the latest version.
Note If you are installing Cisco SAN-OS Release 3.1(2b) or later, you can also use Oracle Database 10g Express. Your other choice is PostgreSQL.
Note Be sure to back up all of the rrd file in $INSTALL/pm/db before the upgrade.
Directory Structure
As of Cisco MDS NX-OS Release 4.1(3a), the directory structure has changed to accommodate its future integration with Nexus 5000 products. By default, the Fabric Manager components are installed on your computer's hard drive, in the C:\Program Files\ folder. The installation path is the root directory on your computer, such as C:\Program Files\Cisco Systems. Fabric Manager and databases are installed in application directories, such as C:\Program Files\Cisco Systems\DCM\FM. Table 2-2 and Table 2-3 describe the directory structure for Windows, UNIX and Solaris operating systems.
Table 2-2 Directory Structure (Windows)
|
|
C:\Program Files\Cisco Systems\ |
Home directory for Cisco products. |
C:\Program Files\Cisco Systems\DCM\ |
Home directory for Cisco Data Center Management products. |
C:\Program Files\Cisco Systems\DCM\FM |
Home directory for Fabric Manager and Device Manager. |
C:\Program Files\Cisco Systems\DCM\JBOSS-4.2.2.GA |
Home directory for JBoss (Fabric Manager Server infrastructure). |
C:\Program Files\Cisco Systems\DCM\DB |
Home directory for database (Oracle and PostgreSQL). |
C:\Program Files\Cisco Systems\DCM\JRE |
Home directory for Java Runtime Environment. |
C:\Program Files\Cisco Systems\DCM\JBOSS-4.2.2.GA\SERVER\FM |
Home directory for Fabric Manager Server. |
Table 2-3 Directory Structure (Unix and Solaris)
|
|
/usr/local/cisco |
Home directory for Cisco products. |
/usr/local/cisco/dcm/ |
Home directory for Cisco Data Center Management products. |
/usr/local/cisco/dcm/fm |
Home directory for Fabric Manager and Device Manager. |
/usr/local/cisco/dcm/jboss-4.2.2.GA |
Home directory for JBoss (Fabric Manager Server infrastructure). |
/usr/local/cisco/dcm/db |
Home directory for database (Oracle and PostgreSQL). |
/usr/local/cisco/dcm/jboss-4.2.2.GA/server/fm |
Home directory for Fabric Manager Server. |
Installing Oracle
Note We recommend the Oracle Database 10g Express option for all users who are running Performance Manager on large fabrics (1000 or more end devices). If you want to use Oracle Database 10g Express, you must install the database and create a user name and password before continuing with the Fabric Manager installation.
To install the Oracle Database 10g Express, follow these steps:
Step 1 Click the following link to install Oracle Database 10g Express.
http://www.oracle.com/technology/software/products/database/xe/index.html
Note If you have another instance of Oracle already installed on a PC, we recommend that you do not install the Oracle database on the same PC. In such cases, Fabric Manager can only use the PostgreSQL database.
Step 2 Run OracleXE.exe to install the Oracle database. Set the password for the system user. The database administrator uses the password to manage and administer Oracle Database 10g Express server, which is installed by the Oracle installer.
Step 3 Finish the installation and verify that both services (OracleServiceXE and OracleXETNSListener) are running from the Services window.
Step 4 Run the following script to
g. Change the default Oracle admin port to 8082, and
h. To create a database account. This example creates a new user 'scott' with a password 'tiger'. You need to keep this login credentials as it is required at a later point in the installation process.
C:\> cd c:\oraclexe\app\oracle\product\10.2.0\server\bin
C:\oraclexe\app\oracle\product\10.2.0\server\bin>sqlplus / as sysdba
SQL> exec dbms_xdb.sethttpport(8082);
SQL> GRANT CONNECT,RESOURCE,UNLIMITED TABLESPACE TO SCOTT IDENTIFIED BY
Note The Oracle Database 10g Express option is only supported on Microsoft Windows. It is not supported on UNIX systems.
Note For information about backing up the Oracle database, go to this location: http://download.oracle.com/docs/cd/B25329_01/doc/admin.102/b25107/backrest.htm#i1004902. You canalso use the exp/imp utility at this location: http://download.oracle.com/docs/cd/B25329_01/doc/admin.102/b25107/impexp.htm#BCEEDCIB.
Note For information about backing up the PostgreSQL database, run the pg_dump utility to have a good backup. For more information, go to this location: http://www.postgresql.org/docs/8.1/static/app-pgdump.html.
Note For information about installing Oracle Database 10g and Oracle Database 11g Enterprise Editions , go to this location: http://www.oracle.com/technology/software/products/database/index.html.
If you are using the Oracle database, you need to install the Oracle JDBC (Java Database Connectivity) component for Fabric Manager to connect to the database. For more information refer to the "Java Database Connectivity" section.
Increasing UDP Buffer Size
If the Fabric Manager SNMP packet log shows an SNMP VarBind decode error, the UDP buffer size is low and the buffer size needs to be increased.
To increase the UDP buffer size, do the following:
Step 1 For Solaris 8, ensure that the UDP buffer size is at least 64 K.
ndd -set /dev/udp udp_recv_hiwat 65535
ndd -set /dev/udp udp_xmit_hiwat 65535
Step 2 Add the following setting in /etc/system, so that the buffer size will be in effect even after a reboot.
set ndd:udp_recv_hiwat=65535
set ndd:udp_xmit_hiwat=65535
Note Before starting the installation, make sure that you have logged in as a Superuser.
Database Backup and Restore-PostgresSQL
The Fabric Manager uses PostgresSQL Database as the default database. The Fabric Manager backup utility uses PostgresSQL pg_dump utility to dump all of the database content to an ASCII dump file. Restore utility uses PostgresSQL to recreate data using the dump file.
The dump file represents a snapshot of the database at the time of backup.
Backup
To perform a backup of the Fabric Manager database, enter these commands on Linux/Solaris. Assume INSTALLDIR is the top directory of Fabric Manager installation.
/pgbackup.sh 02252008.data
The backup file 02252008.data will be created in $INSTALLDIR/bin directory. If you want to create it in a standard backup director provide the full path name of the dump file
Restore
To restore Fabric Manager database, you must have a good backup file, and you must stop the Fabric Manager server before restoration. Run restore and enter these commands on Linux Solaris. Assume INSTALLDIR is the top directory of the Fabric Manager installation.
./pgrestore.sh 02252008.data
Importing PM Statitics Data to Fabric Manager
To manually import existing Performance Manager statistics data to Fabric Manager, follow these steps:
Step 1 Stop the Fabric Manager Server.
Step 2 Copy the existing RRD file (from a prior installation) to $INSTALLDIR/pm/db.
Step 3 Run the $INSTALLDIR/bin/pm.bat s.
Step 4 Restart the Fabric Manager Server.
Step 5 Add the fabric to the Performance Manager collection using WebClient.
The Performance Manager historic statistics are available on WebClient after the application has been running for an hour..
Installing Fabric Manager
As of Cisco MDS NX-OS Release 4.1(3a), Fabric Manager is no longer packaged with a Cisco MDS 9000 Family switch. You must install Fabric Manager from the CD-ROM or from Cisco.com. When you install Fabric Manager software, the Device Manager is installed by default.
Note Users installing Fabric Manager must have full administrator privileges to create user accounts and start services. Users should also have access to all ports. These are the ports used by Fabric Manager Server and the PostgreSQL database: 1098, 1099, 4444, 4445, 8009, 8083, 8090, 8092, 8093, 514, 5432.
For switches running Cisco MDS 9000 FabricWare, you must install Fabric Manager from the CD-ROM included with your switch, or you can download Fabric Manager from Cisco.com.
To download the software from Cisco.com, go to the following website:
http://cisco.com/cgi-bin/tablebuild.pl/mds-fm
To install Fabric Manager on Solaris, follow these steps:
Step 1 Set Java 1.5 to the path that is to be used for installing Fabric Manager.
Step 2 Copy the Fabric Manager jar file m9000-fm-3.2.0.136.jar from the CD-ROM to a folder on the Solaris workstation.
Step 3 Launch the installer using the following command:
java -Xms512m Xmx512m -jar m9000-fm-3.2.0.136
Step 4 Follow the on-screen instructions provided in the Fabric Manager management software setup wizard.
When you connect to the server for the first time, Fabric Manager checks to see if you have the correct Sun Java Virtual Machine version installed on your workstation. Fabric Manager looks for version 1.5(x) during installation. If required, install the Sun Java Virtual Machine software.
Note You can run CiscoWorks on the same PC as Fabric Manager, even though the Java requirements are different. When installing the later Java version for Fabric Manager, make sure it does not overwrite the earlier Java version required for CiscoWorks. Both versions of Java can coexist on your PC.
Note On Windows, remote Fabric Manager installations or upgrades should be done through the console using VNC or through the Remote Desktop Client (RDC) in console mode (ensuring RDC is used with the /Console option). This is very important if the default PostgreSQL database is used with Fabric Manager, because this database requires the local console for all installations and upgrades.
Note Before installing Cisco Fabric Manager on a Windows Vista system, turn the User Account Control (UAC) off. To turn off UAC, select Start > Control Panel > User Accounts > Turn User Account Control on or off, clear the Use User Account Control (UAC) to help protect your computer check box, and then click OK. Click Restart Now to apply the change.
Note Telnet Client application is not installed by default on Microsoft Windows Vista. To install Telnet Client, select Start > Programs > Control Panel > Click Turn Windows features on or off (if you have UAC turned on you will need to give it the permission to continue). Check the Telnet Client check box and then click OK.
As of Cisco MDS NX-OS Release 4.1(3a), Fabric Manager has an express installation option. When you select this option, Fabric Manager will be installed on your computer with a set of default user credentials. If the PostgreSQL database is not present on your computer, the installer will install PostgreSQL. If the PostgreSQL database is present, the installer will upgrade it to latest version. You may change the default credentials after the installation is complete.
To install (Express) Fabric Manager on Windows, follow these steps:
Step 1 Click the Install Management Software link.
Step 2 Choose Management Software > Cisco Fabric Manager.
Step 3 Click the Installing Fabric Manager link.
Step 4 Click the FM Installer link.
You see the welcome message in the Cisco Fabric Manager Installer window shown in Figure 2-3.
Figure 2-3
Welcome to the Management Software Setup Wizard
Step 5 Click the Express radio button, and then click Next to begin express installation.
Step 6 Check the I accept the terms of the License Agreement check box, and then click Next.
Note Fabric Manager express installation option uses admin as the user name and password as the user password. The user may change the password after the installation is complete.
Note Fabric Manager express installation option installs the PostgreSQL database with admin as the user name and password_1_2_3 as the user password. The user may change the password after the installation is complete.
You see the default credentials in the Cisco Fabric Manager Installer window shown in Figure 2-4.
Figure 2-4
Default User Credentials
Step 7 Click Install.
Once the installation is finished, you see an installation completed message in the Cisco Fabric Manager Installer window shown in Figure 2-5.
Figure 2-5
Install Complete
Note You can choose to launch Fabric Manager or Device Manager by checking the Launch Fabric Manager or Launch Device Manager check boxes. Icons for Fabric Manager and Device Manager are automatically created on the desktop.
Step 8 Click Finish to close the Cisco Fabric Manager Installer window.
To install (Custom) Fabric Manager on Windows, follow these steps:
Step 1 Click the Install Management Software link.
Step 2 Choose Management Software > Cisco Fabric Manager.
Step 3 Click the Installing Fabric Manager link.
Step 4 Click the FM Installer link.
You see the welcome message in the Cisco Fabric Manager Installer window shown in Figure 2-6.
Figure 2-6 Welcome to the Management Software Setup Wizard
Step 5 Click the Custom radio button, and then click Next to begin the installation.
Step 6 Check the I accept the terms of the License Agreement check box, and then click Next.
You see the Install Options dialog box shown in Figure 2-7.
Figure 2-7 Install Options Dialog Box
Step 7 Click the radio button for either:
a. Fabric Manager Server (Licensed) to install the server components for Fabric Manager Server.
b. Fabric Manager Standalone to install the standalone version of Fabric Manager.
Note You should verify that the Fabric Manager Server hostname entry exists on the DNS server, unless the Fabric Manager Server is configured to bind to a specific interface during installation.
Note Fabric Manager Standalone is a single application containing Fabric Manager Client and a local version of Fabric Manager Server bundled together. Fabric Manager Standalone allows you to discover and monitor the immediate fabric.
Step 8 Select an installation folder on your workstation for Fabric Manager. On Windows, the default location is C:\Program Files\Cisco Systems\MDS 9000. On a UNIX (Solaris or Linux) machine, the installation path name is /usr/local/cisco_mds9000 or $HOME/cisco_mds9000, depending on the permissions of the user doing the installation.
Step 9 Click Next.
You see the Database Options dialog box shown in Figure 2-8.
Figure 2-8 Database Options Dialog Box
Step 10 Click the radio button for either Install PostgreSQL or Use existing DB to specify which database you want to use.
If you choose Install PostgreSQL, accept the defaults and enter a password. The PostgreSQL database will be installed.
Note If you choose to install PostgreSQL, you must disable any security software you are running, because PostgreSQL may not install certain folders or users.
Note Before you install PostgreSQL, remove the cygwin/bin from your environment variable path if Cygwin is running on your system.
Step 11 If you select Use existing DB, click the radio button for either PostgreSQL 8.1/8.2 or Oracle10g.
Step 12 Click Next in the Database Options dialog box.
You see the User Options dialog box shown in Figure 2-9.
Figure 2-9 User Options Dialog Box
Step 13 Enter a user name and password and click Next.
You see the Authentication Options dialog box shown in Figure 2-10.
Figure 2-10 Authentication Options Dialog Box
Step 14 Choose an authentication mode (Local, RADIUS, TACACS or MDS) and click Next.
Note When the MDS radio button is selected, the FM authentication uses the user database in the switch for authentication.
Step 15 Click Verify to test your login.
You see the Configuration Options dialog box for Fabric Manager Standalone shown in Figure 2-11.
Figure 2-11 Configuration Options Dialog Box for Fabric Manager Standalone
Step 16 Check the FC Alias and SNMPv3 check boxes as desired and click Install if you are installing Fabric Manager Standalone.
You see the Configuration Options dialog box for Fabric Manager Server shown in Figure 2-12.
Figure 2-12 Configuration Options Dialog Box for Fabric Manager Server
Step 17 Select the local interface, web server port or Fabric Manager server port and check the FC Alias and SNMPv3 check boxes as desired. Click Install if you are installing Fabric Manager Server. You see the installation progress in the Cisco Fabric Manager Installer window as shown in Figure 2-13.
Note You can change the Fabric Manager Server port number to a port that is not used by any other application.
Note You should verify that the Fabric Manager Server hostname entry exists on the DNS server, unless the Fabric Manager Server is configured to bind to a specific interface during installation.
Note If you check the Use HTTPS Web Server check box, the Web Server Port field is grayed out and the default port is 443.
Note If you select a specific IP address during installation and change the server host IP address, you must modify the following two files that are all located in the $INSTALL/conf directory. Change server.bindaddrs to the new IP address in the server.properties file and change wrapper.app.parameter.4 to the new IP address in the FMServer.conf file.
Figure 2-13 Progress of Installation
Once the installation is finished, you see an installation completed message in the Cisco Fabric Manager Installer window shown in Figure 2-14.
Figure 2-14 Install Complete
Note If you installed Fabric Manager Standalone, you can choose to launch Fabric Manager or Device Manager by checking the Launch Fabric Manager or Launch Device Manager check boxes. Icons for Fabric Manager and Device Manager are automatically created on the desktop.
Step 18 Click Finish to close the Cisco Fabric Manager Installer window.
If you installed Fabric Manager Server, icons for Fabric Manager and Device Manager are not created on the desktop until you launch Fabric Manager Client. Follow the instructions in the "Launching Fabric Manager Client in Cisco SAN-OS Release 3.2(1) and Later" section on page 5-2 to launch Fabric Manager Client.
If you checked the Create shortcuts check box, a Cisco MDS 9000 program group is created under Start > Programs on Windows. This program group contains shortcuts to batch files in the install directory.
On a UNIX (Solaris or Linux) machine, shell scripts are created in the install directory. The shell scripts that run the programs equivalent to the Windows services are FMServer.sh, all the server-side data and Performance Manager data are stored in the install directory.
Fabric Manager Client cannot run without Fabric Manager Server. The server component is downloaded and installed when you download and install Fabric Manager. On a Windows machine you install the Fabric Manager Server as a service. This service can then be administered using Services in the Microsoft Windows Control Panel. The default setting for the Fabric Manager Server service is that the server is automatically started when the machine is rebooted. You can change this behavior by modifying the properties in Services.
Installing Device Manager
To install Device Manager on your workstation, follow these steps:
Step 1 Enter the IP address of the switch in the Address field of your browser.
You see the Installation window for Device Manager shown in Figure 2-15.
Figure 2-15 Device Manager Installation Window
Step 2 Click the Cisco Device Manager link.
You see the welcome to the management software setup wizard message in the Cisco Device Manager Installer window shown in Figure 2-16.
Figure 2-16 Welcome to the Management Software Setup Wizard Window
Step 3 Click Next to begin the Installation.
Step 4 Check the I accept the terms of the License Agreement check box and click Next.
Step 5 Select an installation folder on your workstation for Device Manager. On Windows, the default location is C:\Program Files\Cisco Systems\MDS 9000. On a UNIX (Solaris or Linux) machine, the installation path name is /usr/local/cisco_mds9000 or $HOME/cisco_mds9000, depending on the permissions of the user doing the installation.
Step 6 Click Install.
Once the installation is finished, you see an installation completed message in the Cisco Device Manager Installer window shown in Figure 2-17.
Figure 2-17 Install Complete
Step 7 Click Finish to close the Cisco Device Manager Installer window.
Creating FM/DM Shortcut Manually
The FM/DM shortcut on the desktop is available only when launching the application for the first time. The shortcut is not offered when you lauch Fabric Manager from the FM download page.
To create FM/DM shortcut on the desktop, follow these steps:
Step 1 Navigate to Control Panel> Java.
Double-click Java.
The Java Control Panel displays as shown in the Figure 2-18.
Figure 2-18 Java Control Panel Dialog Box
Step 2 In the Temporary Internet Files area, click View.
The Java Cache Viewer dialog box displays as shown in Figure 2-19.
Figure 2-19 Java Cache Viewer Dialog Box
Step 3 To recreate the shortcut, right-click on the application, and select Install Shortcuts from the shortcut menu, as shown in Figure 2-20
Figure 2-20 Shortcut Menu
Upgrading the Management Software
If you log into a switch running Cisco MDS SAN-OS with Device Manager and that switch has a later version of the management software, you are prompted to install the later version. To upgrade the Cisco MDS Fabric Manager software, follow the instructions described in the "Installing the Management Software" section. You can also upgrade Device Manager at any time by entering the IP address or host name of the supervisor module with the later version of software in the Address field of your browser. You will need a new CD to upgrade Fabric Manager.
Note As of Cisco MDS SAN-OS Release 3.x, downgrades are not supported through the installer. To downgrade Fabric Manager or Device Manager to an earlier release, you need to manually uninstall first and then reinstall the previous version of Fabric Manager or Device Manager.
Upgrading Fabric Manager Server and Fabric Manager Standalone Version Using the Fabric Manager Update Installer
As of Release 3.3(1a), you can use the Cisco MDS 9000 Fabric Manager Update Installer to upgrade:
•Fabric Manager Server
•Fabric Manager Standalone
The Fabric Manager Update Installer is smaller in size than the Fabric Manager installer which makes it easier to download. The update Installer has limited capability to upgrade Fabric Manager Server or the Fabric Manager Standalone version and it does not have the capability to install a database or the Fabric Manager Server infrastructure (JBoss). Table 2-4 shows the recommended Fabric Manager upgrade paths.
Table 2-4 Fabric Manager Upgrade Path Using Update Installer
|
|
|
3.0(x)1 |
3.3(1a) or above |
1. Upgrade to 3.1(x). 2. Upgrade to 3.2(x). 3. Upgrade to 3.3(x) or above by launching the update installer {java -Xmx512m -jar jar_file_name} and then follow the steps to upgrade Fabric Manager.
Note Change the server port to 9099 if you are not upgrading from Release 3.2(2c) in Step 2.
|
3.1(x)1 |
3.3(1a) or above |
1. Upgrade to 3.2(x). 2. Upgrade to 3.3(x) or above by launching the update installer {java -Xmx512m -jar jar_file_name} and then follow the steps to upgrade Fabric Manager.
Note Change the server port to 9099 if you are not upgrading from Release 3.2(2c) in Step 1.
|
3.2(x) |
3.3(1a) or above |
1. Upgrade to 3.3(x) or above by launching the update installer{java -Xmx512m -jar jar_file_name} and then follow the steps to upgrade Fabric Manager.
Note Change the server port to 9099 if you are not upgrading from Release 3.2(2c).
|
3.3(x) |
NX-OS 4.1(1b) |
1. Upgrade to 4.1(x) or above by launching the update installer {java -Xmx512m -jar jar_file_name} and then follow the steps to upgrade Fabric Manager.
Note Change the server port to 9099 if you are not upgrading from Release 3.4(x).
|
Integrating Cisco Fabric Manager with Other Management Tools
You can use Fabric Manager, Device Manager, and Performance Manager with these management tools:
•Cisco Traffic Analyzer—Allows you to break down traffic by VSANs and protocols and to examine SCSI traffic at a logical unit number (LUN) level.
•Cisco Protocol Analyzer—Enables you to examine actual sequences of Fibre Channel frames easily using the Fibre Channel and SCSI decoders Cisco developed for Ethereal.
•Cisco Port Analyzer Adapter 2—Encapsulates SPAN traffic (both Fibre Channel control and data plane traffic) in an Ethernet header for transport to a Windows PC or workstation for analysis. Both the Cisco Traffic Analyzer and Cisco Protocol Analyzer require the PAA to transport MDS SPAN traffic to a Windows PC or workstation.
For more information on these tools and how they work together with the Cisco Fabric Manager management applications, see Chapter 66, "Troubleshooting Your Fabric."
Running Fabric Manager Behind a Firewall
For Windows PCs running Fabric Manager, Device Manager, and Performance Manager behind a firewall, certain ports need to be available.
By default, Fabric Manager Client and Device Manager use the first available UDP port for sending and receiving SNMP responses. The UDP SNMP trap local ports are 1162 for Fabric Manager, and 1163 or 1164 for Device Manager. Fabric Manager Server also opens TCP RMI port 9099.
In Fabric Manager Release 2.1(2) or later, you can select the UDP port that Fabric Manager Client or Device Manager uses for SNMP responses by uncommenting the following statement:
•On a Windows desktop, uncomment the following in the FabricManager.bat or DeviceManager.bat file in the C:\Program Files\Cisco Systems\MDS9000\bin directory:
rem JVMARGS=%JVMARGS% -Dsnmp.localport=9001
•On a UNIX desktop, uncomment the following in the FabricManager.sh or DeviceManager.sh file in the $HOME/.cisco_mds9000/bin directory:
# JVMARGS=$JVMARGS -Dsnmp.localport=9001
In Fabric Manager Release 3.2(1) or later, Fabric Manager Client initiates communication with Fabric Manager Server on the port 9099 for Java Naming Directory and Interface (JNDI) lookup. Fabric Manager Server redirects the client to 1098 and JBoss directs the request to the appropriate service.
Fabric Manager Server proxy services uses a configurable TCP port (9198 by default) for SNMP communications between the Fabric Manager Client or Device Manager and Fabric Manager Server.
The Fabric Manager Server component requires two predictable TCP ports to be opened on the firewall for an incoming connection:
•server.port = 9099
•server.data.port = 9100
As long as these two ports are open, Fabric Manager Client can connect to the server. Other TCP ports connected to Fabric Manager Client are initiated by the server, which is behind the firewall.
The following table lists all ports used by Fabric Manager applications:
|
|
|
SSH |
Port 22 (TCP) |
Telnet |
Port 23 (TCP) |
HTTP |
Port 80 (TCP) |
TFTP |
Port 69 (UDP) |
SNMP |
Port 161 (UDP) |
Syslog |
Port 514 (UDP) |
Used by Fabric Manager Server and Performance Manager
|
SNMP_TRAP |
Port 2162 (UDP) |
SNMP |
Picks a random free local port (UDP) or 9198 (TCP) if SNMP proxy is enabled. Can be changed in server.properties. |
Java RMI |
Ports 9099, 9100 (TCP) |
Used by Fabric Manager Client
|
SNMP |
Picks a random free local port (UDP) if SNMP proxy is enabled. Can be changed with the client -Dsnmp.localport option. |
Java RMI |
Picks a free local port between 19199 and 19399 (TCP). Can be changed with the client -Dclient.portStart and -Dclient.portEnd options. For example, -Dclient.portStart = 19199 -Dclient.portEnd = 19399. |
|
SNMP_TRAP |
Picks a free local port between 1163 and 1170 (UDP). |
SNMP |
Picks a random free local port (UDP) or 9198 (TCP) if SNMP proxy is enabled. Can be changed in server.properties. |
|
|
|
|
|
1098 (TCP) |
conf/jboss-service.xml |
jboss:service=Naming |
RMI Naming Service Port |
This port is for JNDI based naming services. The client look up this port for JNDI binding objects and resources. |
9099 (TCP) |
conf/jboss-service.xml |
jboss:service=Naming |
Bootstrap JNP Port ( FM changed 1099 to 9099) |
This port is for JNDI based naming services. The client look up this port for JNDI binding objects and resources. |
4444 (TCP) |
conf/jboss-service.xml |
jboss:service=invoker,type=jrmp |
RMI /JRMP ObjectPort |
The org.jboss.invocation.jrmp. server.JRMPInvoker class is an MBean service that provides the RMI/JRMP implementation of the Invoker interface. The JRMPInvoker exports itself as an RMI server so that when it is used as the Invoker in a remote client, the JRMPInvoker stub is sent to the client instead. |
4445 (TCP) |
conf/jboss-service.xml |
jboss:service=invoker,type=pooled |
Pooled Invoker |
The org.jboss.invocation. pooled.server.PooledInvoker is an MBean service that provides RMI over a custom socket transport implementation of the Invoker interface. The PooledInvoker exports itself as an RMI server so that when it is used as the Invoker in a remote client, the PooledInvoker stub is sent to the client instead and invocations use the a custom socket protocol. |
8009 (TCP) |
deploy/jbossweb-tomcat41.sar/META-INF/jboss-service.xml |
jboss.web:service=WebServer? |
AJP Connector |
The AJP Connector element represents a Connector component that communicates with a web connector via the AJP protocol. This is used for invisibly integrating JBoss Web into an existing or a new Apache server. |
8083 (TCP) |
conf/jboss-service.xml |
jboss:service=WebService |
RMI dynamic class loader port |
The WebService MBean provides dynamic class loading for RMI access to the server EJBs. Used for web service |
8092 (TCP) |
deploy/jms/oil2-service.xml |
jboss.mq:service=InvocationLayer?,type=OIL2 |
Optimized Invocation Layer for JMS |
This port is used for JBossMQ services. JBossMQ is composed of several services working together to provide JMS API level services to client applications. Optimized Invocation Layer is a service used by JMS client. |
8093 (TCP) |
deploy/jms/uil2-service.xml |
jboss.mq:service=InvocationLayer?,type=UIL2 |
Unified Invocation Layer for JMS |
This port is used for JBossMQ services. JBossMQ is composed of several services working together to provide JMS API level services to client applications. Unified Invocation Layer is a service used by JMS client. |
3873 (TCP) |
Service end point for EJB3 aspect service |
JBoss EJB3 Aspect Service Deployer |
JBoss EJB3 Invoker |
This port used by the client to communicate with EJB3(Enterprise JavaBean 3.0) services on JBoss Server. |
Uninstalling the Management Software
To uninstall the Fabric Manager applications on a Windows PC, follow these steps:
Step 1 Close all running instances of Fabric Manager and Device Manager.
Step 2 Select Start > Programs > Cisco MDS 9000 > Uninstall to run the uninstall.bat script.
Step 3 When you are prompted with the following message, type Y.
Are you sure you want to Uninstall? Press 'Y' to uninstall, 'A' to remove all files or 'N' to exit. [Y/A/N]
Note When you uninstall the application, the installer will not remove the database as it is shared with other DCM applications. Option "A" will remove all the log files and client prefences. Option "Y" will not remove the log files and client prefences.
Note Starting from NX-OS Release 4.1(3a), when you uninstall Fabric Manager Server, only Fabric Manager is removed. Jboss and the database, either PostgreSQL or Oracle, are not removed because they might be shared with other applications such as Cisco DCNM.
You can also run the batch file (located in the C:\Program Files\Cisco Systems\MDS 9000 folder by default) directly from the command line.
Note For older installations, delete the .cisco_mds9000 folder. Manually delete all desktop icons and program menu items.
On a Windows PC, this folder is created under the Documents and Settings folder (for example, d:\Documents and Settings\Administrator\.cisco_mds9000 if you had installed it as user Administrator). On a UNIX machine, the default installation folder is /usr/bin.
To uninstall the Fabric Manager applications on a UNIX machine, follow these steps:
Step 1 For all releases starting with Release 2.x, run the shell script
$HOME/cisco_mds9000/Uninstall.sh or /usr/local/cisco_mds9000/uninstall.sh, depending on where Fabric Manager was installed.
Step 2 For all releases starting with Release 1.3(1), run the shell script
$HOME/.cisco_mds9000/Uninstall.sh or /usr/local/.cisco_mds9000/uninstall.sh, depending on where Fabric Manager was installed.
Step 3 For earlier installations, delete the $HOME/.cisco_mds9000 folder.