VLAN or IP address settings for LAN switch blades, virtual switches, and L2 switches is automatically performed based on the definition information of network resources in Resource Orchestrator. For L2 switches, firewalls, and server load balancers, configuring, modifying, or deleting the definitions that include VLAN settings is automatically performed using scripts. Scripts are prepared for each model of the network devices by infrastructure administrators.
The simplified network settings will be executed when the following operations are performed:
Target | Operation | L-Server | Virtual Switch | LAN Switch Blade | L2 Switches | Firewall | Server Load Balancer | |
|---|---|---|---|---|---|---|---|---|
Internal Connection | External Connection | |||||||
Network resources | Creation | - | - | - | Yes (*1) | Yes | - | - |
Modification | - | - | - | Yes (*1) | Yes | - | - | |
Deletion | - | Yes | - | - | Yes | - | - | |
Virtual L-Server | Creation | Yes | Yes | Yes | - | - | - | - |
Modification | - | - | - | - | - | - | - | |
Deletion | - | - | - | - | - | - | - | |
Physical L-Servers | Creation | Yes | - | Yes | - | Yes (*2) | - | - |
Modification | - | - | Yes | - | - | - | - | |
Deletion | - | - | Yes | - | Yes (*2) | - | - | |
L-Platform | Creation | Yes | Yes (*3) | Yes | - | Yes (*5) | Yes | Yes |
Modification | - | Yes (*3) | Yes (*4) | - | Yes (*5) | Yes | Yes | |
Deletion | - | - | Yes (*4) | - | Yes (*5) | Yes | Yes | |
Yes: Available
-: Not Available
*1: When automatic network settings and automatic VLAN settings for uplink ports are enabled, network settings are automatically configured.
*2: Available when using rack mount servers.
*3: Available when using virtual L-Servers.
*4: Available when using physical L-Servers.
*5: Available when using rack mount servers and physical L-Servers.
The simplifying network settings will be executed for the following scope.
Figure 2.4 Scope of Automatic Network Settings Execution
For details on automatic network settings for virtualized environments, refer to the relevant sections explaining how to prepare and setup server virtualization software in "Appendix C Configuration when Creating Virtual L-Servers" in the "Setup Guide CE".
The following network information is hidden, depending on the network resource.
Virtual Switches
Port Groups
LAN Switch Blades
L2 Switches
Figure 2.5 Hiding of Network Device Information
For network devices (firewalls, server load balancers, and L2 switches), the following are automatically configured by scripts registered in Resource Orchestrator. Scripts need to be prepared beforehand by infrastructure administrators.
Automatic configuration of firewalls and server load balancers when creation, modification, or deletion of an L-Platform is performed
The detailed timing is as follows:
When an L-Platform is created from an L-Platform template that includes a network device (firewall or server load balancer)
When L-Server addition or deletion is performed for an L-Platform
When the settings of a network device (firewall or server load balancers) in an L-Platform are modified
When an L-Platform created from an L-Platform template that includes a network device (firewall or server load balancer) is deleted
Automatic configuration for L2 switches when creation, modification, or deletion of an network resource is performed
Automatic configuration for L2 switches when creation or modification of a physical L-Server is performed on rack mount servers
Figure 2.6 Network Device Automatic Configuration Image
Recovery (deletion of incomplete settings, etc.) of network devices can be performed by preparing a recovery script in advance in case automatic configuration of network devices fails.
Figure 2.7 Network Device Automatic Configuration Image (Recovery Process)
The following files are available as network device (firewall, server load balancer and L2 Switch) configuration files.
Network device configuration files
A configuration file containing settings related to communication, such as address and VLAN information of devices and interfaces, and rules for firewalls and server load balancers
Network device environment files
Files required for the operation of devices such as CA certificates, user authentication databases and user customized information (excluding network device configuration files)
In this product, a function which manages device configuration files using generations is offered. Using this function modification changes can be checked and restoration of configurations can be performed easily when network devices are exchanged.
The following features are provided by the network device configuration file management function.
Backing up and restoration of configuration files
Network device configuration files can be backed up by this product and managed using generations.
Further, the latest configuration files which already backed up can be restored to network devices.
Export of configuration files
The files that are backed up and managed using generations can be exported from the manager.
Backing up and restoration of environment files
Network device configuration files can be backed up to this product.
Further, backed up environment files can be restored to network devices.
Export of environment files
The backed up files can be exported to the infrastructure admin's terminal.
Registration of external server information
For network devices which do not have an ftp server, the information of an external ftp server, which is used for backing up and restoration of network devices, can be registered.
Specify this external server in the network configuration information (XML definition) file when registering the network device.
This section provides a brief overview of easy network monitering.
Visualize networks (network map function)
For PRIMERGY BX servers, Resource Orchestrator provides a Network Map function, which helps visualize and relate physical networks (between servers and LAN switches) together with virtualized networks (from VLANs or virtual switches used in server virtualization software). The Network Map provides the following features:
Automatic detection and display of network connections (topology) and link statuses between heterogeneous network resources.
Facilitates overall network consistency diagnostics and identification of the resources (physical and virtual) affected by a network issue.
Displays comprehensive content that can be used in communication between server and network administrators, thus smoothing out coordination between the two parties.
Status monitoring
Resource Orchestrator monitors status of network devices (Firewalls, server load balancers, and L2 switches) to automatic network settings for them.
