m06 networking

7/27/2019 M06 Networking

1/45

Networking

Module 6

Data ONTAP 8.0 7-Mode

Administration


2/45

2009 NetApp. All rights reserved.

Module Objectives

By the end of this module, you should be able to:

Identify the configuration of network settings and

components in Data ONTAP

Explain and configure name resolution services

Configure routing tables in Data ONTAP Define and create interface groups

Discuss the operation and method for routing in VLANs


3/45


Interface Configuration


4/45


Interface Configuration

Initial interface configuration

Configured by the setup command

After initial setup, you can create and modify

the interface configuration using:

CLI with the ifconfig command

NetApp System Manager

Interface configuration is stored in the

/etc/rc file Executed when storage system boots normally


5/45


Interface Configuration (Cont.)

Data ONTAP supports

the following network

types:

Ethernet 10/100 Base-T

1G Ethernet

10G Ethernet (DataONTAP 7.2 or later)

Storage systems with

multiple-port Ethernetadapters use letters to

identify each port

Network Types Letter

Ethernet e

Port Number Letter

1 a2 b

3 c

4 d


6/45


Managing Interfaces: ifconfig

Network interface configuration parameters:

IP address

Netmask address

Broadcast address

Media type and speed Maximum Transmission Unit (MTU)

Flow control (Gigabit Ethernet II controller only)

Up or down state

To display current status: ifconfig -a

Interface configuration changes are notpermanent until entered into the /etc/rc file


7/45 2009 NetApp. All rights reserved.

CLI: Managing Interfaces

To configure the current status:

ifconfig

To display permanent settings:

rdfile /etc/rc

To change permanent settings:

wrfile /etc/rc

Command overwrites the existing file

Existing information can be cut and pasted Press Control-C to save changes and exit

To activate changes to the /etc/rc file, reboot

or issue source /etc/rc

Better yet...Use

System Manager



System Manager: Interfaces Setup

To configureinterfaces

Select the interface

to manage



System Manager: Interfaces Setup (Cont.)

When you specify an interface as untrusted,

any packets received on the interface are likely to be dropped

(ICMP ping requests may be dropped)



Interface Groups



0 1 2 3 4 5 6 70 1 2 3 4 5 6 7

8 975 642 31

8 975 642 31

e0e e0f

e0a e0b e0c e0dRLM

LNK

LNK

LNK

LNK

0f0e 0g 0h

LNK

LNK

LNK

LNK

0b0a 0c 0d

2HI-POT

2200VDC1HI-POT

2200VDC

REPLACE THIS ITEM

WITHIN 2 MINUTES OFREMOVAL

REPLACE THIS ITEM


PROPERLY SHUTDOWNSYSTEM BEFORE OPENING CHASSIS.

ACIN PWR ACIN PWR

Previously called virtual interfaces (VIFs)

Interface groups allow trunking of one or moreEthernet interfaces

IEEE 802.3ad link aggregation

Types: Single-mode

Multimode

Interface Groups

Interface Group Interface Group

NOTE: For high availability, group e0a e0c and e0b e0d together



0 1 2 3 4 5 6 7

8 975 642 31

8 975 642 31

e0e e0f

e0a e0b e0c e0dRLM

LNK

LNK

LNK

LNK

0f0e 0g 0h

LNK

LNK

LNK

LNK

0b0a 0c 0d

2HI-POT

2200VDC1HI-POT

2200VDC

REPLACE THIS ITEM


REPLACE THIS ITEM


PROPERLY SHUT DOWN SYSTEM BEFORE OPENING CHASSIS.

AC IN PWR AC IN PWR

Single-Mode Interface Group

Single-mode:

Only one interface isactive

Other interfaces are

on standby

Advantages: Fault tolerance

Interface Group

x

Standby PathActive Path



0 1 2 3 4 5 6 7

8 975 642 31

8 975 642 31

e0e e0f

e0a e0b e0c e0dRLM

LNK

LNK

LNK

LNK

0f0e 0g 0h

LNK

LNK

LNK

LNK

0b0a 0c 0d

2HI-POT

2200VDC1HI-POT

2200VDC

REPLACE THIS ITEM


REPLACE THIS ITEM


PROPERLY SHUT DOWN SYSTEM BEFORE OPENING CHASSIS.

AC IN PWR AC IN PWR

Multimode Interface Group

Multimode:

All interfaces active Share the same MAC

address

Types:

Static: multi Dynamic: lacp

Advantages: Fault tolerance

Higher throughput

Eliminating singlepoints of failure

Interface Group

x

Active PathActive Path



Load Balancing

Load balancing is supported for multimode interface

groups only: IP-based (default)

MAC-based

Round robin (not recommended)

Load balancing assumes an even distribution of IPaddresses, such as the following:

e0 e1 e2 e3

10.10.10.1 10.10.10.2 10.10.10.3 10.10.10.4

10.10.10.5 10.10.10.6 10.10.10.7 10.10.10.8

10.10.10.9 10.10.10.10 10.10.10.11 10.10.10.12

10.10.10.13 10.10.10.14 10.10.10.15 10.10.10.16



Example: Single-Mode Interface Group

Interface must be downed to be added to aninterface group

Entries created on the command line are not

permanent

system> ifgrp create single Singig1 e0a e0c

system> ifconfig Singig1 172.17.200.201 netmask

255.255.255.0 mediatype auto up

system> ifgrp favor e0a

system> ifconfig Singig1

Singig1:flags=1148043

mtu 1500 inet 172.17.200.201 netmask 0xffffff00

broadcast 172.17.200.255

ether 02:a0:98:03:28:8e



Example: Multimode Interface Group

system> ifgrp create multi multiig2 e0a e0b e0c e0d

system> ifconfig multiig2 172.17.200.202 netmask

255.255.255.0 mediatype auto

system> ifconfig multiig2

multiig2:flags=1148043

mtu 1500 inet 172.17.200.202 netmask 0xffffff00broadcast 172.17.200.255 ether 02:a0:98:03:28:8e



0 1 2 3 4 5 6 70 1 2 3 4 5 6 7

8 975 642 31

8 975 642 31

e0e e0f

e0a e0b e0c e0dRLM

LNK

LNK

LNK

LNK

0f0e 0g 0h

LNK

LNK

LNK

LNK

0b0a 0c 0d

2HI-POT

2200VDC1HI-POT

2200VDC

REPLACE THIS ITEM


REPLACE THIS ITEM


PROPERLY SHUTDOWNSYSTEM BEFORE OPENING CHASSIS.

ACIN PWR ACIN PWR

system> ifgrp create multi multiig1 e0a e0c

system> ifgrp create multi multiig2 e0b e0d

system> ifgrp create single l2ig multiig1 multiig2

system> ifconfig l2ig 172.17.200.206 netmask255.255.255.0 mediatype auto

system> ifconfig l2ig

l2ig:flags=1148043

mtu 1500

inet 172.17.200.206

netmask 0xffffff00

broadcast 172.17.200.255

ether 02:a0:98:03:28:8c

Example: Second Level Interface Group

multiig1 multiig2

Could use lacp if switch

supported cross-stack etherchannel l2ig



System Manager: Interface Groups

To configure

interfaces



System Manager: Interface Groups (Cont.)



Name Resolution


22/45


Host-Name Resolution

A storage system must be able to resolve host

names to valid IP addresses

Host-name resolution is commonly used in:

Processing CIFS requests

Processing NFS requests

Authenticating SSH sessions

Many other services


23/45


Host-Name Resolution (Cont.)

Data ONTAP stores and maintains host information in

the following locations: /etc/hosts file

DNS server

Network Information Service (NIS) server

In host-name resolution:

The /etc/nsswitch.conf file controls the order inwhich these three locations are checked

Data ONTAP stops checking locations when a valid IP

address is returned

NOTE: For convenience, you can use NetApp System Manager


24/45


/etc/hosts Configuration

Local IP and name resolution is provided by/etc/hosts

To modify /etc/hosts, use:

The rdfile and wrfile commands in CLI

Any machine where /etc directory is visiblesuch as an adminhost

NetApp System Manager


25/45


System Manager: Host File Configuration

To configurenetwork files


26/45


System Manager: Other Files


27/45


DNS Configuration

The DNS provides a centralized mechanism

for host-name resolution in Windows and

UNIX environments

To configure the DNS:

NetApp System Manager In the CLI, use:

setup command

options dns.*

dns command


28/45


System Manager: DNS Setup

To configure

DNS


29/45


System Manager: DNS Setup (Cont.)


30/45


NIS

NIS provides:

A centralized mechanism for host-name resolution User authentication

The storage system can participate as an NISclient or server

To configure NIS: Use System Manager

In the CLI, use:

setup command

options nis.* nis command


31/45


System Manager: NIS Setup

To configure

NIS


32/45


System Manager: NIS Setup (Cont.)


33/45


Route Resolution


34/45


Route Information

A route defines the direction to a network or

host To display the current routing table:

In CLI, use netstat -r

system> netstat -r

Routing tables

Internet:

Destination Gateway Flags Refs

default 66.166.149.161 UGS 14

66.166.149.160/2 link#1 UC 0

66.166.149.161 0:20:6f:10:25:7a UHL


35/45


The netstat Command

Use the netstat r command to view or

change the network routing tables

Use the netstat nr command to view or

change the network routing tables with IP

addresses (instead of name resolution) Use the netstat rs command to view or

display the per protocol statistics


36/45


The route Command

Use the route -s command to show routing

tables

Use the route -f command to flush all

gateway entries in the routing table

Use the routens command to view

network routing tables with IP addresses

(instead of name resolution)


37/45


Virtual LANs


38/45


Group and divide: Group interfaces together

Divide into VLANs as

needed

Virtual LANs (VLANs) provide:

Increased IP network security

Optimized packet routing

Reduce broadcast chatter

Independent configuration

(jumbo frames)

Virtual LANs

VLAN60

70

70

80

80

Floor 1

Floor 2

VLAN70 VLAN8060

60


39/45


40/45


Creating a VLAN from the CLI

system> ifconfig e0b down

system> vlan create e0b 10vlan: e0b-10 has been created

system> ifconfig e0b-10 172.17.200.201 netmask255.255.255.0 mediatype auto

system> ifconfig a

e0b:flags=80908043mtu 1500 ether 00:a0:98:03:28:8f (auto-1000t-fd-up)flowcontrol full


41/45


System Manager: VLAN Setup

To configure

interfaces


42/45


Module Summary

In this module, you should have learned to:

Identify the configuration of network settings and

components in Data ONTAP

Explain and configure name resolution services

Configure routing tables in Data ONTAP

Define and create interface groups

Discuss the operation and method for routing in VLANs


43/45

Exercise

Module 6: Networking

Estimated Time: 45 minutes


44/45


Check Your Understanding

Where can you set or change a host name

locally on the storage system?

/etc/hosts

How do you configure host-name resolution for

a storage system? /etc/hosts

DNS, NIS commands

/etc/nsswitch.conf


45/45

Check Your Understanding (Cont.)

What is the difference between single-mode

and multimode trunks?

Single-modefailover

Multimodeimproved bandwidth

What are the benefits of a VLAN? Increased security

Improved packet routing

m06 networking

Documents