01 OSS Architecture Theory VMS01

OSS5.x base Introduction CourseTheoryVersion 1 0Version 1.0Editor: Ngo Dang Quy Duong [email protected]

For internal use only1 Nokia Siemens Networks

Nokia Siemens Networks Legal notice

Intellectual Property RightsAll copyrights and intellectual property rights for Nokia Siemens Networks training documentation, productAll copyrights and intellectual property rights for Nokia Siemens Networks training documentation, product

documentation and slide presentation material, all of which are forthwith known as Nokia Siemens Networkstraining material, are the exclusive property of Nokia Siemens Networks. Nokia Siemens Networks owns therights to copying, modification, translation, daptation or derivatives including any improvements ordevelopments. Nokia Siemens Networks has the sole right to copy, distribute, amend, modify, develop,license, sublicense, sell, transfer and assign the Nokia Siemens Networks training material. Individuals can, , , g guse the Nokia Siemens Networks training material for their own personal self-development only, hose sameindividuals cannot subsequently pass on that same Intellectual Property to others without the prior writtenagreement of Nokia Siemens Networks. The Nokia Siemens Networks training material cannot be usedoutside of an agreed Nokia Siemens Networks training session for development of groups without the priorwritten agreement of Nokia Siemens Networks.g


Contents

Introduction to OSS5.x architecture Introduction to NetAct High Availability g y How to install NetAct client PC


Introduction to OSS5.x architecture


General Architecture in NetAct


Three-tier Architecture

Tier-1 User workstations

DesktopNetAct UserWorkstations

User Workstations - Tier 1

Tier-2 NetAct application servers

Consist of three functionality domains (cells) J2EE cell

Connectivitycell

GUIcell

Application Server layer -Tier 2

domains (cells) Connectivity

(CS) J2EE (LinAS) GUI (GUIS) DCN StorageData Storage Cell

cell cell

Data Storage subsystem layer -Tier 3

GUI (GUIS) Tier-3 Data-storage subsystem

Consist of one functionality domain

Managed Network

functionality domain (cell)

Data-storage (DS) cell


Architecture in NetAct OSS 5


NetAct Computing PlatformNew in the OSS5.x, replacing PA-RISC Already introduced in OSS4 x

Connectivityserver LinAS GUIS

Application Server layer - Tier 2

p gservers Already introduced in OSS4.x

server

CPUCPU CPUCPU CPUCPU

Connectivity Cell

J2EE Cell GUI Cell

Data Storage subsystem layer - Tier 3

Cell

Dataserver

CPU CPU

CPU CPU

D t St C ll

Optional

Data Storage Cell

Storage (on-line data)

Storage/disc(back-up data)


NetAct StartPage and Citrix Farm


General Architecture in NetActAccessing NetAct Applications


Overview of the typical configuration

NetAct systems Single NetAct system consist of

Connectivityserver

GUIserver

GUIserver

LinASLinASConnectivityserver

Tier-2 - NetAct application servers

consist of Two to four of the

connectivity servers Two or more of the

Linux application

J2EE cell GUI cellConnectivity cell

Tier 3 Data storage subsystemLinux application servers

Two or more of the GUI serversT d t

Dataserver

Dataserver

Tier-3 - Data-storage subsystem

Two data servers

Data-storage cell

Storage device


Overview of the system connections

Tier-3Tier-2Tier-1

GUIserver

LAN

GUIserver

LAN

LinAS

LAN

Connectivityserver

LAN FC

LinAS Dataserver

LAN FC

Dataserver

LAN FC

Connectivityserver

LAN FCN A U

Traffic LAN

SAN

LANLANLANLAN LANLAN

LANLAN FCFCLANLAN LANLAN FCFCLANLAN FCFCLANLAN FCFCNetAct User

Workstations RedHat Cluster Suite

Storage system

SAN

Storage (on-line data)

FCStorage/disk (backup data)

FCFCFC


optional

NetAct users

UsernameOperating system main users Linux: root

GUIS Ad i i t tGUIS: AdministratorNetAct main user omcDatabase main user OMC, SYS, SYSTEMUser management main user itim managerLDAP service main user Directory Manager

End users: Created by NetAct System AdministratorNote: The database related processes are owned by user oracleNote: The database related processes are owned by user oracle.


NOLS: Nokia Online Services

Off-line version of NEDThe off-line version of NED can be downloaded from Nokia Online Services (NOLS):https://online.portal.nokiasiemensnetworks.com


NED6.0 is available in NOLS now!


Add OSS5.3 in NED Library

Open NED6.0 Click Admin-> Document Set

managermanager Add OSS5.3 Library


Practice

Install NED and NetAct 5.3 NED


Introduction to NetAct 5.x High Availability


High Availability in NetAct

High Availability = Secure the applications run in case of server failure

High Availability Products

Tools for checking High Availability

Linux (LinAS) Mercury cluster mercury_status.shWindows (GUIS) Citrix Metaframe Farm Active Directory

Metaframe PresentationS C lServer Console

Linux(DS, CS)

RedHat ClusterSuite

hamgrmx.pl statusldapacmx.pl hostRoles


Managing RHCS (command reference)

hamgrmx.pl: hamgrmx.pl status hamgrmx.pl start|stop netact

h l t t| t k < k > [ d ] hamgrmx.pl start|stop package [node]LOGS:

/var/log/RHCS.log /var/log/messages

/ / / /var/log/package_.log /var/opt/nokia/oss/global/ha/HAbackTrace.log

PRACTICAL EXAMPLE: Removing a node from cluster and moving its packages to adoptive nodes

t# h l t d 1 ti " h h td l t root# hamgrmx.pl stop node cs1name -option "rhcs_shutdown,relocate

http://www.redhat.com/docs/manuals/csgfs/ contains all that you will ever need related to RHCS and more.


LDAP directory service

The LDAP directory is a centralized storage of static configuration data in NetAct system.


General Architecture in NetActPackages / Roles / Servers in RHCS


Introduction OSS5.x Hardware


Rack Layout example

NetAct mainstream configuration racking example with old mainstream HW.


Blade Solution System Overview

Front Back

HP C-class blade solution with blade servers & Intel processors

Blade chassis

FC blade switch

LAN blade switch

Bl d


C7000, 16 slots Blade chassisBlade servers

Hardware in NetAct


Blade server models in new deliveries *)

Product Model Notes Mainstream(General

HP ProLiant BL460c G6 2x fiber connections (Qlogic)

1x dual core or 1x quad core(General

purpose usage)( g )

1x Intel E5502 and 1xIntel E5540 processor 2x 73GB internal disks 24 GB memory

1x quad core processor

24 GB memory

Strengthen/High

HP ProLiant BL460c G6 2x fiber connections (Qlogic) 2 x Intel E5540 quad core processors

2x quad core processors

Performancete 55 0 quad co e p ocesso s

2x 73GB internal disks 48 GB and 96GB memory


Blade Solution: Infrastructure *)

Product Model NotesCabinet 1,6m HP 10636G2 or 2m 10642G2

with 2x32Amp + 2x16Amps PDUsMax two blade

chassis per cabinetConsole HP TFT7600 flat panel Console solutionDVD External 16xSATA DVD-ROM drive

in StorageWorks 1U USB rackUSB connection

Blade chassis

BL c7000 with 10 cool fans and 6 hot power supplies LAN switches: 2x HP Pass-Thru

d l 2 HP P C 2810 it hAlso available: Cisco

module + 2x HP ProCurve 2810 switch Catalyst 3750G-24TS1u

2x fc switches: Brocade BladeSystem 8/24 SAN Switch

For openSAN pass-thru modules areBladeSystem 8/24 SAN Switch

with 4x GBICsthru modules are

available


External Storage Devices *)

Storage Model

Storage configuration

Pointed for

EMC CX4 8x 1TB (SATA) BackupEMC CX4-120

8x 1TB (SATA) Backup

HP EVA4400 8x 146GB Mini hw confEMC CX4 15 146 GB (f ) E t ll tbEMC CX4-

12015x 146 GB (fc) Extra small; tb

EMC CX4-120

6x1TB (SATA) + 2x/3x/4x 15x146GB (fc)

Small/mainstream120 15x146GB (fc)

EMC CX4-240

6x1TB (SATA) + 5x15x146GB (fc) Large

HP EVA4400 2/4/6x 12x146 GB (fc) Mainstream

*) Disclaimer: Information dated 4 10 2010

HP EVA4400 2/4/6x 12x146 GB (fc) MainstreamOpenSAN Inhouse solutions


) Disclaimer: Information dated 4.10.2010

Reference Hardware Deployments *)

With d lWith new server modelsGUI

ServersApplicationServers AS

Connectivity Servers CS

DataServers DS

# users

Std alone N/A N/A N/A N/A N/AStd alone N/A N/A N/A N/A N/AMini(connectNMS)

1xDL360G6/1p4c 1xDL360G6/1p4c 1xDL360G6/1p4c 1xDL360G6/1p4c 5

Entry 2xBL460G6/1p4c 2xBL460G6/1p4c 2xBL460G6/1p4c 2xBL460G6/1p2c/24GB 10 - 20Entry p p p pLow end 2xBL460G6/1p4c 2xBL460G6/1p4c 2xBL460G6/1p4c 2xBL460G6/1p4c/24GB 10 - 20Mainstream 2xBL460G6/1p4c 3xBL460G6/1p4c 3xBL460G6/1p4c 2xBL460G6/2p4c/48GB 40High end 3xBL460G6/1p4c 4xBL460G6/1p4c 3xBL460G6/1p4c 2xBL460G6/2p4c/96GB 60g

*) Disclaimer: Information dated 27.10.2009


Reference Hardware Deployments *)

GUIServers

ApplicationServers AS

Connectivity Servers CS

DataServers DS

# users

With old server models

Std alone N/A N/A N/A N/A N/AMini (connectNMS)

1xDL360G5/1p2c 1xDL360G5/1p2c 1xDL360G5/1p2c 1xDL360G5/1p2c 5

Low end 2xBL460G1/2p2c 2xBL460G1/2p2c 2xBL460G1/2p2c 2xBL460G1/1p2c 10 - 20Low end 2xBL460G1/2p2c 2xBL460G1/2p2c 2xBL460G1/2p2c 2xBL460G1/1p2c 10 20Mainstream 2xBL460G1/2p2c 3xBL460G1/2p2c 3xBL460G1/2p2c 2xBL680G5/2p4c 40High end 3xBL460G1/2p2c 4xBL460G1/2p2c 4xBL460G1/2p2c 2xBL680G5/4p4c 60

*) Disclaimer: Information dated 27.10.2009


Blade details

Introduction: Console on the individual blades are accessed by manually attaching the local I/O cable to the front panel of the blade in question Bl d d th bl d it h Blade servers and the blade switches are configured via the chassis HTTP interface

DVD Rom Drive: The drive is connected via USB to the blade Used only for initial OS and software installation

Local I/O Connector: Connector to attach the local I/O cable to Connector to attach the local I/O cable to

Power button: Button to power up the blade

Insight Display: Interface to set and monitor the state of the chassis Needed only in the initial phase to set the IP

To the blade Serial USB Displa

Needed only in the initial phase to set the IP address off the chassis

Local I/O Cable: Connects keyboard, mouse, DVD and the display to the blade server

To the blade Serial USB Display


Software Layer in NetAct


Install OSS5.x Client PC


Intall NetAct client PC

NetAct Start Page: https://login.r07.netact.sg.tac/netact/login.html Certificate Page: https://login.r07.netact.sg.tac/CertGenWeb/login.html Tier1 Sw Download: https://login.r07.netact.sg.tac/client_sw/


Downloading and installing Tier 1 package: in Windows in Linux

Configuring file associationsChecking browser settingsChecking browser settingsDownloading and installing certificates


Downloading and installing Tier 1 package in Windows Open your workstation web browser and enter the following URL: https:///client_sw/ where stands

for the fully qualified domain name that has been assigned to the requestfor the fully qualified domain name that has been assigned to the request dispatcher inside the LinAS cluster during the system installation. If not known, contact your system administrator.

Click the Windows tier1 package link and download the Tier1 exe file to a Click the Windows tier1 package link and download the Tier1.exe file to a temporary folder in the user workstation.

You are prompted with the following message: Before installation please check that you have rights to install software. Enter OK to continue.y g

The JRE and ICA client applications are installed to the user workstation.


Download SW

https://r01clu.rc01.netact.vms.com.vn/client_sw/


Downloading and installing Tier 1 package in Linux Open your workstation web browser and enter the following URL: https:///client_sw/ where stands

for the fully qualified domain name that has been assigned to the requestfor the fully qualified domain name that has been assigned to the request dispatcher inside the LinAS cluster during the system installation. If not known, contact your system administrator.

Click the Linux tier1 package link and download the tier1 package sh file Click the Linux tier1 package link and download the tier1_package.sh file to a temporary folder in the user workstation.

Find the folder where the file was saved, for example, cd /tmp. Change the file permissions: chmod 755 tier1 package sh Change the file permissions: chmod 755 tier1_package.sh. Install the tier1 software: ./tier1_package.sh. If there is a previous installation, you are asked to confirm that the

previous version can be overwrittenprevious version can be overwritten. Click Yes to use the SSL relay and to configure the port.


Create the file associations

Open Windows Explorer and click Tools Folder options File Types, or the Internet browser used, for example, Edit Preferences Helper applications, and verify the following: file type .jlnp is associated with the jawaws application fil t i i i t d ith th Cit i ICA Cli t E i file type .ica is associated with the Citrix ICA Client Engine

If the associations have not been made, create them in the following way: To create the associations in Windows-based NetAct user workstations, select New/New Type. Note: To create the associations in Windows-based NetAct user workstations you can use, for

l Wi d E l I t t E lexample, Windows Explorer or Internet Explorer. Follow the steps below to create the file associations in Linux-based NetAct user workstations: Start the web browser you want to use. Select Preferences/Options Select Helper Applications/Application/File Types Add the MIME type application/x-java-jnlp-file for files with extension/suffix .jnlp and add as the application that the browser should invoke for this file type /opt/Nokia/j2re1.4.2_12/javaws/javaws. Add the MIME type application/x-ica for files with extension/suffix .ica and add as the application that the browser should invoke for this file type /opt/Nokia/ICAClient/wfica shthat the browser should invoke for this file type /opt/Nokia/ICAClient/wfica.sh .


Checking browser settings

With the current default Internet Explorer browser settings you cannot launch jnlp files because of Microsoft Internet Explorer bug 812935. To overcome this problem, do the following adjustment to the browser settings:I I E l l T l In Internet Explorer, select Tools.

In the Tools drop-down list, select Internet Options. In Internet Options, select Advanced. In Advanced scroll down to Security and ensure that the option Do not save encrypted In Advanced, scroll down to Security and ensure that the option Do not save encrypted

pages to disk is not selected. The security settings of the Internet Explorer can restrict the usage of some NetAct

applications. Do the following adjustment to the IE browser settings to avoid getting the message Your current security settings do not allow this file to be downloaded.message Your current security settings do not allow this file to be downloaded .

In Internet Explorer, select Tools. In the Tools drop-down list, select Internet Options. In Internet Options, select Security. Click the Custom Level... button. Scroll down to Downloads. Click Downloads and ensure that File download is enabled


Download CA:

Click Select on the line Select cn=NetAct Server CA from

https://r01clu.rc01.netact.vms.com.vn/CertGenWeb/

Click Select on the line Select cn=NetAct Server CA..., from Available Certification Authorities list.

Download CA


NetAct login Page

https://r01clu.rc01.netact.vms.com.vn/netact/


Reset Itim Manager password

[root@r01ds1 duong113]# /usr/lib64/mozldap6/ldapmodify -v -D 'cn=directory Manager' -w 'ldapadmin' -f /home/omc/duong113/reset itim ldif/home/omc/duong113/reset_itim.ldif


Check system

On system: #hamgrmx.pl status

On LINAS: mercury_status.sh linas apps status sh linas_apps_status.sh


Full of hard disk

On each Server: df hCheck backup logg


Thank you


01 OSS Architecture Theory VMS01

Documents

Transcript of 01 OSS Architecture Theory VMS01