Difference between revisions of "BXadmin:Network/Galaxy"
From CCGB
Line 110: | Line 110: | ||
'''TODO:''' default route change in zonecfg? | '''TODO:''' default route change in zonecfg? | ||
+ | |||
+ | === frisell === | ||
+ | |||
+ | Changed interfaces in ESXi, Changed IPs in /etc/hosts, deleted public IPs from test-db1, set defrouter for test-db1 | ||
+ | |||
+ | === rochefort/westmalle/orval === | ||
+ | |||
+ | # dladm create-vlan -l aggr0 -v 140 vlan140 | ||
+ | # dladm create-vlan -l aggr0 -v 270 vlan270 | ||
+ | # ipadm create-if vlan140 | ||
+ | # ipadm create-if vlan270 | ||
+ | # ipadm create-addr -T static -a 128.118.250.XXX/27 vlan140/v4 | ||
+ | # ipadm create-addr -T static -a 172.18.2.XXX/25 vlan270/v4 |
Revision as of 15:57, 15 February 2012
Contents
Notes
test-web1 has thumper's new private address in /etc/hosts!
Initial Configuration
Galaxy has its own subnet, this is the configuration that was done to create it:
asa
ciscoasa(config)# access-list Outside_access_in extended permit ip any 128.118.250.0 255.255.255.224 ciscoasa(config)# route Bioinformatics 128.118.250.0 255.255.255.224 172.28.90.18 1 ciscoasa(config)# nat (Bioinformatics) 1 172.18.0.0 255.255.240.0 ciscoasa(config)# route Bioinformatics 172.18.0.0 255.255.240.0 172.28.90.18 1
switch-cisco-3750-1
switch-cisco-3750-1(config)#vlan 140 switch-cisco-3750-1(config-vlan)#name GALAXY_PUBLIC switch-cisco-3750-1(config-vlan)#exit switch-cisco-3750-1(config)#vlan 270 switch-cisco-3750-1(config-vlan)#name GALAXY_PRIVATE switch-cisco-3750-1(config-vlan)#exit switch-cisco-3750-1(config)#int vlan 140 switch-cisco-3750-1(config-if)#description GALAXY_PUBLIC switch-cisco-3750-1(config-if)#no ip address switch-cisco-3750-1(config-if)#exit switch-cisco-3750-1(config)#int vlan 270 switch-cisco-3750-1(config-if)#description GALAXY_PRIVATE switch-cisco-3750-1(config-if)#no ip address switch-cisco-3750-1(config-if)#exit switch-cisco-3750-1(config)#ip route 128.118.250.0 255.255.255.224 10.1.7.2 switch-cisco-3750-1(config)#ip route 172.18.2.0 255.255.255.128 10.1.7.2Also, established connections to
172.18.0.0 0.0.15.255had to be added to the inbound access-list.
switch-dell-powerconnect-6248-1
switch-dell-powerconnect-1(config)#vlan database switch-dell-powerconnect-1(config-vlan)#vlan 140 Warning: The use of large numbers of VLANs or interfaces may cause significant delays in applying the configuration. switch-dell-powerconnect-1(config-vlan)#vlan 270 Warning: The use of large numbers of VLANs or interfaces may cause significant delays in applying the configuration. switch-dell-powerconnect-1(config-vlan)#exit switch-dell-powerconnect-1(config)#interface vlan 140 switch-dell-powerconnect-1(config-if-vlan140)#name "GALAXY_PUBLIC" switch-dell-powerconnect-1(config-if-vlan140)#ip address 128.118.250.1 255.255.255.224 switch-dell-powerconnect-1(config-if-vlan140)#routing switch-dell-powerconnect-1(config-if-vlan140)#no ip redirects switch-dell-powerconnect-1(config-if-vlan140)#exit switch-dell-powerconnect-1(config)#interface vlan 270 switch-dell-powerconnect-1(config-if-vlan270)#name "GALAXY_PRIVATE" switch-dell-powerconnect-1(config-if-vlan270)#ip address 172.18.2.1 255.255.255.128 switch-dell-powerconnect-1(config-if-vlan270)#routing switch-dell-powerconnect-1(config-if-vlan270)#no ip redirects switch-dell-powerconnect-1(config-if-vlan270)#exit switch-dell-powerconnect-1(config)#interface port-channel 2 switch-dell-powerconnect-1(config-if-ch2)#switchport general allowed vlan add 140,270 tagged Warning: The use of large numbers of VLANs or interfaces may cause significant delays in applying the configuration. switch-dell-powerconnect-1(config-if-ch2)#exit switch-dell-powerconnect-1(config)#interface port-channel 4 switch-dell-powerconnect-1(config-if-ch4)#switchport general allowed vlan add 140,270 tagged Warning: The use of large numbers of VLANs or interfaces may cause significant delays in applying the configuration. switch-dell-powerconnect-1(config)#interface port-channel 1 switch-dell-powerconnect-1(config-if-ch1)#switchport general allowed vlan add 270 tagged Warning: The use of large numbers of VLANs or interfaces may cause significant delays in applying the configuration.
switch-hp-procurve-8.net.bx.psu.edu
switch-hp-procurve-8(config)# vlan 270 switch-hp-procurve-8(vlan-270)# name GALAXY_PRIVATE String GALAXY_PR... too long. Allowed length is 12. switch-hp-procurve-8(vlan-270)# name GALAXY_PRIV switch-hp-procurve-8(vlan-270)# tagged trk1 switch-hp-procurve-8(vlan-270)# exit
bigsky
# touch /etc/hostname.aggr140001 # echo 'bigsky.g2.bx.psu.edu mtu 9000' > /etc/hostname.aggr270001 # cat /dev/null > /etc/hostname.aggr1 # ifconfig aggr140001 plumb # ifconfig aggr270001 plumb # zonecfg -z main-web1 zonecfg:main-web1> add net zonecfg:main-web1:net> set physical=aggr140001 zonecfg:main-web1:net> set address=128.118.250.4/27 zonecfg:main-web1:net> end zonecfg:main-web1:net> set physical=aggr270001 zonecfg:main-web1:net> set address=172.18.2.20/25 zonecfg:main-web1:net> end zonecfg:main-web1> verify zonecfg:main-web1> commit zonecfg:main-web1> exit # echo '172.18.2.0 255.255.255.128' >> /etc/netmasks # ifconfig aggr270001 plumb 172.18.2.20 netmask + broadcast + up # ifconfig aggr270001 addif 172.18.2.100/27 zone main-web1 up # ifconfig aggr270001 addif 172.18.2.101/27 zone main-db1 up # ifconfig aggr140001 addif 128.118.250.4/27 zone main-web1 # ifconfig aggr140001:1 up
TODO: default route change in zonecfg?
frisell
Changed interfaces in ESXi, Changed IPs in /etc/hosts, deleted public IPs from test-db1, set defrouter for test-db1
rochefort/westmalle/orval
- dladm create-vlan -l aggr0 -v 140 vlan140
- dladm create-vlan -l aggr0 -v 270 vlan270
- ipadm create-if vlan140
- ipadm create-if vlan270
- ipadm create-addr -T static -a 128.118.250.XXX/27 vlan140/v4
- ipadm create-addr -T static -a 172.18.2.XXX/25 vlan270/v4