Network Configuration of A10 HarmonyTM Controller¶
The Harmony Controller has networking configuration at the following places:
- At Harmony Controller Appliances - if they are being used
- At nodes (mostly VMs) where Harmony Controller Software is installed
- External IP address or FQDN using which Controller is accessed by administrators and connected devices.
- Appliance Networking Configuration
- When Harmony Controller appliance is powered on for the first time, an IP address needs to be configured along with its gateway on the appliance management port. This step needs to be repeated for all the appliances. For exact steps, please refer the hardware manual. The appliance IP is needed to login to the appliance and start the Harmony Controller installation. Later access to this may be needed to run any Hypervisor (KVM) level command.
- Node Networking Configuration
- The VM(s) need to be configured using public bridge networking. This requires unique IP address to be assigned to each VM, and this IP address should be accessible from the local network (on which the appliance is configured). Please note that the VM IP address should not be the same as any of the other VM IP addresses or any of the appliance IP addresses.
- External IP Address
- The external IP address is the IP address used by Thunder devices, Lightning ADCs to connect to the Harmony Controller, i.e device registration, sending metrics, etc. All internal micro-services are also exposed on this. Administrators use Harmony Portal on the same IP address. Ideally, it is recommended to setup a domain name which resolves to IP address of Master node, and this domain name should be passed as the external IP parameter to the install script. For allowing external devices or users to connect, this may also be an IP address that has 1-1 NAT with the IP address of Master node.
Changing Network Configuration¶
In the current version, IP address of any of the Harmony Controller node (Master Node, Node1 and Node2 IP) and External IP address cannot be changed after installation i.e. the Harmony Controller will stop working if IP address of any node is changed.
Other networking configuration like subnet mask, Gateway IP address, DNS server address etc. can be changed using commands provided by operating system on which Harmony Controller is installed.
Configuring Proxy Settings¶
Incase the proxy settings are set, add no_proxy parameter and required http_proxy and https_proxy parameters under /etc/environment file and restart the system for the Harmony Controller to work properly. The no_proxy parameters are added with all the Master and node IP address along with the network that we use.
Monitoring Health of the Nodes¶
All the nodes of Harmony Controller should be monitored for the health of the nodes with the system being used by the customer for monitoring other machines. If the Master Node goes down, please contact A10 Customer Support immediately. They will help create another installation of Harmony Controller using the data backup stored by the customer.
If status of any other nodes is down, try to bring up the node with the same IP address. If it is not possible to bring back the node, login to the master node and run the command to delete the node from the controller cluster:
kubectl delete node <name-of-the-node-which-went-down>
After deleting the node please contact A10 Customer Support for procedure to replace the node.
Configuration Data Backup¶
As of now, configuration is stored at two different places - one for Harmony Controller platform and other for Thunder Device Manager (TDM).
Hourly backup is being done using cron job and being stored on Harmony Controller nodes. Path of platform backup file is /data/config-datastore-0/cassandra/backups/. Path for TDM backup file is /data/tdm-0/backup. Date and time of backup is appended in the file name for easy identification.
Customer should make arrangement to transfer the backup regularly and store it at a safe place external to the controller, so that it can be used for restore, whenever needed. Remember to collect platform backup files from each node for a 3-node controller deployment. TDM backup is only on one node.
Restoring Configuration Data from Backup¶
Scripts for restoring configuration data are provided with installer. From the installer directory and running relevant scripts will restore the configuration. Please note that backup taken from the same version of controller should be restored. Backup taken from previous version of controller may get restored fine but may have issues in functioning of controller.
Command to restore Harmony Controller Platform configuration:
./onprem_restore_cds.sh <Platform backup file name>
In case of 3-node controller, all 3 backup files (collected from 3 nodes) should be passed as argument to the script.
Command to restore Thunder Device Manager (TDM) configuration:
cd utilities ./onprem_restore_tdm.sh <TDM backup file name>
Installation documentation describes installation steps for a simplistic environment. However, A10 HarmonyTM Controller software can be installed in various environments with advanced installation options. Feel free to contact A10 CUstomer Support with detailed information of your environment for exploring advanced installation.
Undeploy A10 Harmony Controller Software¶
In case something goes wrong with the Harmony Controller software installation, it can be deployed again without impacting the application traffic. Old installation of software should be undeployed properly in order to successfully install the controller software again. Script to undeploy is included with the installer. However, it is recommended to contact A10 Customer Support before running the script.
Factory Reset of Appliance¶
A script to Factory reset of the Harmony Controller Appliance is included in the installer package. However, it is recommended to contact A10 Customer Support before running the script. While contacting, please provide the controller software version information i.e. what was the version when appliance was shipped and what version it is running now.