Couple of Months before I got a call from my Senior, he said they are transferring me to a Data center, to administrate a CheckPoint Cluster which is installed on IPSO..
Grrr... Now what is IPSO!!!
IPSO is a a FreeBSD fork developed originally by IPSILLION Networks, later acquired by Nokia and now with CheckPoint (Nokia IP devices has been acquired by Nokia one year back)
Following is the procedure to install IPSO in a Nokia Box...
Cheers!!
Manu B alias Karthik...
Installing IPSO
Performing a clean installation of IPSO is a relatively simple process. The installer configures
the system based on the selections you make during the process. The standard installation
procedure is as follows:
1. Power on the appliance and enter the boot manager (Bootmgr).
2. Initiate the installation process.
3. Answer the configuration questions when prompted.
4. Reboot the appliance when the initial installation is complete.
5. Continue with the initial configuration of your appliance.
Let’s walk through these steps.
Booting into the Boot Manager
When the appliance is powered on, after the memory test completes, you will be presented
with a menu that presents you with a boot manager (1 Bootmgr) option and an IPSO
(2 IPSO) option.
Entering 2 starts the standard boot process into the IPSO operating system.
Because you want to perform a clean installation, you must enter the boot manager and
launch the installation process. Do this by entering 1.
1 Bootmgr
2 IPSO
Default: 1
Starting bootmgr
Loading boot manager..
Boot manager loaded.
Entering autoboot mode.
Type any character to enter command mode.
BOOTMGR[1]>
You are now presented with the BOOTMGR[1]> prompt. To begin the installation
process, enter install.
BOOTMGR[1]> install
The IPSO installer will warn you that you will be expected to enter information during
the initial configuration process, such as client IP address, netmask, system serial number,
and so on. You will also be reminded that the clean installation will destroy any existing files
and data on your disk. To proceed with the clean installation, enter y.
############## IPSO Full Installation ###############
You will need to supply the following information:
Client IP address/netmask, FTP server IP address and filename,
system serial number, and other license information.
This process will DESTROY any existing files and data on your disk.
#################################################################
Continue? (y/n) [n] y
Part of the installation process is entering the chassis serial number. This is very important
in identifying your appliance should you ever need to call into Nokia for technical support.
The serial number is typically located on the back of the appliance but has been known to be
on the bottom in some of the older appliances.
Enter your serial number.
Motherboard serial number is NONE.
The chassis serial number can be found on a
sticker on the back of the unit with the letters
Note
Of course, you have already written down the serial number prior to racking the appliance.
S/N in front of the serial number.
Please enter the serial number: 12345678
Please answer the following licensing questions.
Depending on your requirements, an enhanced license can be purchased to support
IGRP and BGP routing protocols. If you do not require these routing protocols, like
most Nokia installations, you can enter n when presented with the IGRP and BGP
questions.
Will this node be using IGRP ? [y] n
Will this node be using BGP ? [y] n
Because we are performing a clean installation, it does not make sense to pull the installation image from the disk you are looking to overwrite. What the installation script does allow you to do, however, is fetch the IPSO image from a remote FTP server.
Depending on your FTP server configuration, you can select from one of two options: You can install from an anonymous FTP server where no user credentials are required, by entering
1, or you can install from an FTP server that requires a username and password, by entering 2.
Regardless of the option you select, you are prompted to enter an IP address for your Nokia IP appliance, the IP address of the FTP server, and the default gateway your communications will use for routing. The only additional entries that require user input, if using the second menu option, are the username and password fields. To simplify the installation steps, and based on what most customers use, we will continue with the anonymous FTP server method. When prompted to choose an installation method, enter 1 and then the IP addresses you want to use. Each IP address field requires that you press Enter to move to the next option.
1. Install from anonymous FTP server.
2. Install from FTP server with user and password.
Choose an installation method (1-2): 1
Enter IP address of this client (10.3.2.5/24): 192.168.200.10/24
Enter IP address of FTP server (0.0.0.0): 192.168.200.50
Enter IP address of the default gateway (0.0.0.0): 192.168.200.1
After you have supplied the IP address and subnet mask information, you must
select a physical interface to assign it to. Select the interface you wish to use for the FTP
communications by typing the corresponding number and pressing Enter.
Choose an interface from the following list:
1) eth1
2) eth2
3) eth3
4) eth4
Enter a number [1-4]: 4
Select the speed of the chosen interface by entering the corresponding number.
Choose interface speed from the following list:
1) 10 Mbit/sec
2) 100 Mbit/sec
Enter a number [1-2]: 2
Select the duplex settings for the interface using h for half duplex or f for full duplex.
The duplex settings of your interface will vary depending on the device it is connected to.
Half or full duplex? [h/f] [h] f
Note
The interface list may appear differently on your Nokia since it depends
entirely on the types of network interface cards (NICs) installed.
Now that your interface is configured, you must provide the path to, and the name of,
the IPSO installation package on the remote FTP server. Enter the full path to the IPSO
installation package. If the installation package is located in the root directory of the FTP
server you can press Enter or type the / character and press Enter.
Enter path to ipso image on FTP server [/]: /
Accept the default IPSO installation package name by pressing Enter or typing the full
package name and pressing Enter.
Enter ipso image filename on FTP server [ipso.tgz]: ipso.tgz
After the installation script connects to the FTP server, you have the option of telling
it what to retrieve. You can retrieve all valid packages it finds on the server, retrieve the
packages it finds one at a time and prompt you to accept or reject the package, or retrieve
no additional packages and only install the IPSO operating system. Select your option by
entering the associated menu number.
1. Retrieve all valid packages, with no further prompting.
2. Retrieve packages one-by-one, prompting for each.
3. Retrieve no packages.
Enter choice [1-3] [1]: 3
A final confirmation screen lets you verify all of your configuration settings before
proceeding. Check this carefully to ensure you have not added any incorrect information.
If you are happy with your configuration settings, enter y to start the installation process.
Client IP address=192.168.200.10/24
Server IP address=192.168.200.50
Default gateway IP address=192.168.200.1
Network Interface=eth1, speed=100M, full-duplex
Server download path=[//]
Package install type=none
Mirror set creation=no
Are these values correct? [y] y
If the Nokia appliance is able to contact the FTP server and find the IPSO installation
package, you will see the installation process status messages as the various steps are
completed.
Downloading compressed tarfile(s) from 192.168.200.50
Hash mark printing on (1048576 bytes/hash mark).
Interactive mode off.
100% 36760 KB 00:00 ETA
Checking validity of image. . .done.
Installing image. . .done.
Image version tag: IPSO-4.2-BUILD069-10.27.2007-035617-1515.
Checking if bootmgr upgrade is needed. . .
Need to upgrade bootmgr. Proceeding..
Upgrading bootmgr. . .
new bootmgr size is 2097152
old bootmgr size is 1474560
Saving old bootmgr.
Installing new bootmgr.
Verifying installation of bootmgr.
When the installation completes, you will see an Installation Completed message and
a final instruction telling you to reset the system or press Enter to reboot.
Installation completed.
Reset system or hit
Post Installation
The first thing you must do is provide a hostname for your Nokia appliance. Typically, this
is a one-word name for the system so you can easily recognize the system when performing
administrative tasks. Type your hostname and press Enter. You will also be prompted to
confirm the setting of the hostname. Enter y to continue.
Please choose the host name for this system. This name will be used
in messages and usually corresponds with one of the network hostnames
for the system. Note that only letters, numbers, dashes, and dots (.)
are permitted in a hostname.
Hostname? pint
Hostname set to “pint”, OK? [y] y
The admin user will require a password to authenticate you to the command line of the
Nokia appliance and for Web-based administration using the Nokia Network Voyager interface.
You will be asked to enter it again for validation. Enter the password you want to use.
Please enter password for user admin: notpassword
Please re-enter password for confirmation: notpassword
With the hostname and admin password set, you will be prompted to select your preferred
configuration method. You can configure an interface and use Nokia Network Voyager to
complete the configuration (the recommended method), or you can configure an interface by
using the CLI.
The easiest, and most popular, configuration method is to configure the appliance using
the Nokia Network Voyager. Enter 1 to select this method.
You can configure your system in two ways:
1) configure an interface and use our Web-based Voyager via a remote browser
2) configure an interface by using the CLI
Please enter a choice [ 1-2, q ]: 1
Select an interface you would like to use to configure your appliance by typing the
associated menu option number and pressing Enter.
Select an interface from the following for configuration:
1) eth1
2) eth2
3) eth3
4) eth4
5) quit this menu
Enter choice [1-11]: 4
Type the IP address and mask length you want to use for this interface. Press Enter for
each option after you have input the correct information.
Enter the IP address to be used for eth4: 192.168.200.10
Enter the masklength: 24
You are asked to configure a default route for this interface to use, and to provide the IP address information for your default router. To configure the default route, enter y. When asked to specify your default router, type the IP address of your default gateway and press Enter.
Do you wish to set the default route [ y ] ? y
Enter the default router to use with eth4: 192.168.200.1
After specifying the IP address and default route information, you have the option to change
the interface speed and duplex settings. Because this interface is configured for 1000 mbs and
full duplex, by default, you can enter n to accept the current settings.
This interface is configured as 1000 mbs by default.
Do you wish to configure this interface for other speeds [ n ] ? n
A final confirmation screen lets you verify all of your configuration settings before proceeding. Check this carefully to ensure you have not added any incorrect information.
If you are happy with your configuration settings, enter y.
You have entered the following parameters for the eth4 interface:
IP address: 192.168.200.10
masklength: 24
Default route: 192.168.200.1
Speed: 1000M
Duplex: full
Is this information correct [ y ] ? y
Optionally, you can configure the virtual local area network (VLAN) settings for this
interface. Typically, you will want to answer no to this question unless the interface needs to
be part of the VLAN for security or routing reasons. Enter n to continue.
Do you want to configure Vlan for this interface[ n ] ? n
You may now configure your interfaces with the Web-based Voyager by
typing in the IP address “192.168.200.10” at a remote browser.
At this point, you should be able to connect to your Nokia appliance using the Nokia
Network Voyager Web interface with the browser of your choice.
A final optional setting is the changing of the default SNMP community string. Because
this is easily performed within Nokia Network Voyager, along with more advanced SNMP
configuration settings, you can type n and press Enter to complete the initial configuration.
Do you want to change SNMP Community string [ n ] ? n
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.