Table of Contents (Start)
- Topics
- Introducing SevOne
- Login
- Startup Wizard
- Dashboard
- Global Search - Advanced Search
- Report Manager
- Report Attachment Wizard
- Report Properties
- Report Interactions
- Instant Graphs
- TopN Reports
- Alerts
- Alert Archives
- Alert Summary
- Instant Status
- Status Map Manager
- Edit Maps
- View Maps
- FlowFalcon Reports
- NBAR Reports
- Logged Traps
- Unknown Traps
- Trap Event Editor
- Trap Destinations
- Trap Destination Associations
- Policy Browser
- Create and Edit Policies
- Webhook Definition Manager
- Threshold Browser
- Create and Edit Thresholds
- Probe Manager
- Discovery Manager
- Device Manager
- New Device
- Edit Device
- Object Manager
- High Frequency Poller
- Device Summary
- Device Mover
- Device Groups
- Object Groups
- Object Summary
- Object Rules
- VMware Browser
- AWS Plugin
- Azure Plugin (Public Preview)
- Calculation Plugin
- Database Manager
- Deferred Data Plugin
- DNS Plugin
- HTTP Plugin
- ICMP Plugin
- IP SLA Plugin
- JMX Plugin
- NAM
- NBAR Plugin
- Portshaker Plugin
- Process Plugin
- Proxy Ping Plugin
- SDWAN Plugin
- SNMP Plugin
- VMware Plugin
- Web Status Plugin
- WMI Plugin
- xStats Plugin
- Indicator Type Maps
- Device Types
- Object Types
- Object Subtype Manager
- Calculation Editor
- xStats Source Manager
- User Role Manager
- User Manager
- Session Manager
- Authentication Settings
- Preferences
- Cluster Manager
- Maintenance Windows
- Processes and Logs
- Metadata Schema
- Baseline Manager
- FlowFalcon View Editor
- Map Flow Objects
- FlowFalcon Views
- Flow Rules
- Flow Interface Manager
- MPLS Flow Mapping
- Network Segment Manager
- Flow Protocols and Services
- xStats Log Viewer
- SNMP Walk
- SNMP OID Browser
- MIB Manager
- Work Hours
- Administrative Messages
- Enable Flow Technologies
- Enable JMX
- Enable NBAR
- Enable SNMP
- Enable Web Status
- Enable WMI
- IP SLA
- SNMP
- SevOne Data Publisher
- Quality of Service
- Perl Regular Expressions
- Trap Revisions
- Integrate SevOne NMS With Other Applications
- Email Tips and Tricks
- SevOne NMS PHP Statistics
- SevOne NMS Usage Statistics
- Glossary and Concepts
- Map Flow Devices
- Trap v3 Receiver
- Guides
- Quick Start Guides
- AWS Quick Start Guide
- Azure Quick Start Guide (Public Preview)
- Data Miner Quick Start Guide
- Flow Quick Start Guide
- Group Aggregated Indicators Quick Start Guide
- IP SLA Quick Start Guide
- JMX Quick Start Guide
- Metadata Quick Start Guide
- RESTful API Quick Start Guide
- Self-monitoring Quick Start Guide
- SevOne NMS Admin Notifications Quick Start Guide
- SNMP Quick Start Guide
- Synthetic Indicator Types Quick Start Guide
- Topology Quick Start Guide
- VMware Quick Start Guide
- Web Status Quick Start Guide
- WMI Quick Start Guide
- xStats Quick Start Guide
- xStats Adapter - Accedian Vision EMS (TM) Quick Start Guide
- Deployment Guides
- Automated Build / Rebuild (Customer) Instructions
- Generate a Self-Signed Certificate or a Certificate Signing Request
- SevOne Best Practices Guide - Cluster, Peer, and HSA
- SevOne Data Platform Security Guide
- SevOne NMS Implementation Guide
- SevOne NMS Installation Guide - Virtual Appliance
- SevOne NMS Advanced Network Configuration Guide
- SevOne NMS Installation Guide
- SevOne NMS Port Number Requirements Guide
- SevOne NMS Upgrade Process Guide
- SevOne Physical Appliance Pre-Build BIOS and RAID Configuration Guide
- SevOne SAML Single Sign-On Setup Guide
- Cloud Platforms
- Other Guides
- Quick Start Guides
SevOne Data Platform Deployment on Amazon Web Services
SevOne Documentation
All documentation is available from the IBM SevOne Support customer portal .
© Copyright International Business Machines Corporation 2024.
All right, title, and interest in and to the software and documentation are and shall remain the exclusive property of IBM and its respective licensors. No part of this document may be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the written consent of IBM.
IN NO EVENT SHALL IBM, ITS SUPPLIERS, NOR ITS LICENSORS BE LIABLE FOR ANY DAMAGES, WHETHER ARISING IN TORT, CONTRACT OR ANY OTHER LEGAL THEORY EVEN IF IBM HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES, AND IBM DISCLAIMS ALL WARRANTIES, CONDITIONS OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON SOFTWARE AND DOCUMENTATION FURNISHED HEREUNDER INCLUDING WITHOUT LIMITATION THE WARRANTIES OF DESIGN, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE, AND NONINFRINGEMENT.
IBM, the IBM logo, and SevOne are trademarks or registered trademarks of International Business Machines Corporation, in the United States and/or other countries. Other product and service names might be trademarks of IBM or other companies. A current list of IBM trademarks is available on ibm.com/trademark.
About
Amazon Web Services (AWS) is a collection of several popular cloud-based services hosted by Amazon. Introducing AWS to SevOne Data Platform has its benefits:
-
Ability to deploy in AWS
-
Similar to how SevOne monitors Customer Premises Equipment (CPE), routers, switches, servers, and firewalls today, it will continue to provide the same capability with AWS
-
Monitoring data sources with AWS may eliminate data transport costs
Starting SevOne NMS 6.7.0, MySQL has moved to MariaDB 10.6.12 .
In order to properly deploy SevOne NMS / SevOne Data Insight / SD-WAN (Versa / Viptela solution) on AWS, it is important to understand the following concepts.
|
General Concepts |
|
|
CIDR Subnets |
CIDR subnets are used for IP assignment in Amazon AWS. |
|
SSH |
SSH is used to connect to SevOne NMS command line and to launch configshell or to connect to SevOne Data Insight / SD-WAN (Versa / Viptela solution) launch the web console to configure network settings using NMTUI . |
|
SSH Keys |
SSH keys are used for initial connection to AWS instances. SSH keys are used by the SevOne NMS for communication with peers and are overwritten with the SevOne-fix-ssh-keys command. It is important to set and document the root password after deploying an instance on Amazon AWS to ensure you can connect to it again after setting the root password and peering the NMS. |
|
VPN |
VPN connectivity is recommended to secure data in-transit between AWS and premises. |
|
SevOne Concepts |
|
|
CentOS |
The OS driving the SevOne appliance. |
|
SevOne NMS |
The SevOne NMS appliance. |
|
SevOne Data Insight |
The SevOne Data Insight appliance. |
|
AWS Concepts related to SevOne |
|
|
AMI |
for NMS, The OVA image (for example, vPAS20K_CentOS_v<6.x.x>-ami.ova) can be downloaded from IBM Passport Advantage ( https://www.ibm.com/software/passportadvantage/pao_download_software.html ) via Passport Advantage Online . However, if you are on a legacy / flexible SevOne contract and do not have access to IBM Passport Advantage but have an active Support contract, please contact SevOne Support . From *_CentOS_v<6.x.x> -ami.ova, you may create your own AMI.
for Data Insight, Download the OVA image from IBM Passport Advantage ( https://www.ibm.com/software/passportadvantage/pao_download_software.html ) via Passport Advantage Online . However, if you are on a legacy / flexible SevOne contract and do not have access to IBM Passport Advantage but have an active Support contract, please contact SevOne Support . From sdi-v<6.x.x>-build.<xx>.ova, you may create your own AMI.
for SD-WAN (Versa / Viptela) Solution, Download the OVA image from IBM Passport Advantage ( https://www.ibm.com/software/passportadvantage/pao_download_software.html ) via Passport Advantage Online . However, if you are on a legacy / flexible SevOne contract and do not have access to IBM Passport Advantage but have an active Support contract, please contact SevOne Support . From sevone_solutions_sdwan_<versa/viptela>-v<6.x.x>-build.<xx>.ova, you may create your own AMI. For details on how to create your AMI from the OVA image, please refer to https://docs.aws.amazon.com/vm-import/latest/userguide/vmimport-image-import.html.
|
|
Availability Zone |
Regions have Availability Zones (this is similar to one data center). |
|
AWS Console |
The web GUI for AWS. |
|
AWS CLI |
The CLI for AWS. |
|
EBS |
The underlying filesystem attachment. SevOne NMS uses a minimum size of >= 600 GiB with GP2 disks to guarantee a minimum level of IOPS performance. Larger instances are configured with multiple and/or larger disks for further improvement of performance. SevOne Data Insight / SD-WAN (Versa / Viptela solution) require 250 GiB. |
|
EC2 |
EC2 is an abbreviation for an instance on AWS. |
|
Instance Type |
The amount and type of RAM/vCPU an instance is allocated. |
|
Key Pairs |
Used to connect to instances when launched to connect and set a root password. |
|
Launch Permission |
Controls access to AMI deployment and copying. |
|
NACLs |
Network ACLs work in a similar way to ACLs on routers. |
|
Name |
See Tags below |
|
Placement Groups |
Allows AWS instances to be placed in close proximity (in network hops and physical distance) from one another to ensure maximum network throughput for HA applications. |
|
Region |
The AWS region for deployment. This is analogous to multiple data centers in a large geographic area. |
|
Security Groups |
Similar to firewall policy in AWS. |
|
Subnets |
Subnets exist within an individual Availability Zone and consists of CIDR networks. |
|
Tags |
Allow identifiers in key/value pairs to be used to identify an instance in AWS. For example, Name is a tag. |
|
VPC |
VPC is the virtual network definition tool for AWS. |
AWS's shared tenancy model is commonly used within AWS and SevOne uses this model to deploy SevOne NMS and/or SevOne Data Insight / SD-WAN (Versa / Viptela solution). With this model, multiple customers can share the same pieces of the hardware without these instances interacting with each other.
Under the shared model, AWS has a physical host with a hypervisor running on it to handle the virtualization of the CPU, memory, storage, etc. AWS fits shared EC2 instances onto the appropriate physical host and isolates it from interacting with other customers, even though the same physical resources are being shared.
By default, AWS employs shared tenancy, but it can be turned off for customers who have certain regulatory, compliance, or licensing restrictions that require a dedicated deployment model.
In this guide if there is,
-
[any reference to master] OR
-
[[if a CLI command contains master] AND/OR
-
[its output contains master]],
it means leader.
And, if there is any reference to slave, it means follower.
Prerequisites
-
Key Pair - A key pair is required for initial connection to the AWS EC2 instance after deployment from AMI. For additional details, please refer to https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
-
VPN Configuration - Recommended to access the system via the VPN. For additional details, please refer to https://aws.amazon.com/premiumsupport/knowledge-center/create-connection-vpc/
-
Creating Security Groups - Recommended to disallow access outside of the VPN. For additional details, please refer to https://docs.aws.amazon.com/efs/latest/ug/accessing-fs-create-security-groups.html
-
You may deploy SevOne NMS / SevOne Data Insight / SD-WAN (Versa / Viptela solution) on your own AWS instance as an Amazon Machine Image (AMI), an AWS compatible virtual machine.
AMI must be created from the OVA image downloaded from IBM Passport Advantage ( https://www.ibm.com/software/passportadvantage/pao_download_software.html ) via Passport Advantage Online . However, if you are on a legacy / flexible SevOne contract and do not have access to IBM Passport Advantage but have an active Support contract, please contact SevOne Support .
-
GP2 (General purpose SSD) is the default EBS volume type for Amazon EC2 instances. Using GP2 storage is recommended.
-
SevOne NMS, SevOne Data Insight, and SD-WAN (Versa / Viptela solution) are available to be deployed on AWS, however the current release of Universal Collector and xStats have not been tested yet.
-
SevOne is delivering the same experience on SevOne Appliances and VMs (Virtual Machines). For a Virtual Appliance, a License Key is required.
-
Hybrid Deployment
-
Hybrid cluster setup with a mix of some peers (Cluster Leader, peers, or DNCs) in AWS and some on-premise is tested and supported.
-
Hybrid peer deployment (leader or follower on-premise and its partner in AWS) is not supported with the exception using HSA pairing as a temporary measure to migrate data from on-premise to AWS.
-
Hybrid peer migration may take several days depending on latency.
-
Hybrid setup must only be used for migration of data from the on-premise peer to an HSA in AWS. Upon completion of migration, the HSA in AWS must be promoted to Leader of the pair and the remaining peer on-premise, must be decommissioned.
-
-
Customers are responsible to configure the security zones in AWS.
-
The network connectivity and port requirements are the same for the NMS / Data Insight / SD-WAN (Versa / Viptela solution) deployed in AWS. For details, please refer to SevOne Best Practices Guide - Cluster, Peer, and HSA or SevOne NMS Port Number Requirements Guide.
-
AWS Instance Types for SevOne Appliances
|
SevOne Instance |
License Count |
AWS Instance Type |
Data Disk (GiB) |
|
vPAS5k |
Up to 5k objects |
|
n/a |
|
vPAS10k |
Up to 10k objects |
|
n/a |
|
vPAS20k |
Up to 20k objects |
|
n/a |
|
vPAS60k |
Up to 60k objects |
|
1,250 |
|
vPAS100k |
Up to 100k objects |
|
2,000 |
|
vPAS200k |
Up to 200k objects |
|
4,000 |
|
vDNC100 |
Up to 100 interfaces |
|
400 |
|
vDNC300 |
Up to 300 interfaces |
|
800 |
|
vDNC1000 |
Up to 1000 interfaces |
|
1,500 |
|
vDNC1500 |
Up to 1500 interfaces |
|
3,000 |
The average Input / Output Operations Per Second (IOPS) is 19,000KBs.
Further testing is required to validate support of the newer r4 ec2 instances.
Deployment
Execute the steps below.
-
Please downloaded the OVA images from IBM Passport Advantage ( https://www.ibm.com/software/passportadvantage/pao_download_software.html ) via Passport Advantage Online . However, if you are on a legacy / flexible SevOne contract and do not have access to IBM Passport Advantage but have an active Support contract, please contact SevOne Support .
-
Click on the Image Id link to login to your AWS account to select an Amazon Machine Image instance type for the SevOne Appliances.
Please make sure you have the login/password for your AWS account prior to proceeding further.
-
Choose the desired Instance Type.
-
Click on Next: Configure Instance Details.
-
Configuring instance details vary depending on your needs.
It is important to select any Placement Group options now as this may not be changed later.
It is important to select the Network options so that your instance can poll or receive streaming data from the sources that it needs.
-
Click on Next: Add Storage.
-
Please refer to AWS Instance Types for SevOne Appliances section above to enter your desired values.
Do not modify the drop-down for Device on data disks. The disk setup script /opt/aws_setup.sh expects the data disk is /dev/xvdb and this will only happen if the Device is left as /dev/sdb here in the disk configuration.
The root disk should be 600 GiB for SevOne NMS Appliances and 250 GiB for SevOne Data Insight and SD-WAN (Versa / Viptela solution).
For SevOne NMS appliances PAS100K and above and for all DNC models, please add the additional storage volume (disk).
-
Click on Next: Add Tags.Tags are useful to identify machine instances so they can be easily found.
-
Click on Next: Configure Security Group. This is customer-specific. It is best to pre-configure a security groups.
-
Click on Review and Launch.
-
Please review your configuration and click on Launch.
-
Select an existing Key Pair or create a new one.
You will not be able to access the new instance via SSH without the private key.
Enable Login
for SevOne NMS
-
SSH to the Virtual Machine as root without a password and using the Key Pair selected during the Virtual Machine creation. To convert key pairs to popular SSH clients, please refer to https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-key-pairs.html
-
Set a root password.
$passwdroot -
Configure the data disk by running the /opt/aws_setup.sh script with bash. The script is included in SevOne NMS and when missing, it must be created. Please see the example /opt/aws_setup.sh file below for SevOne NMS.
$bash/opt/aws_setup.shExample: /opt/aws_setup.sh for SevOne NMS#!/bin/bash#aws_setup.sh by awstest@sevone.com 2021-03-30#runs on AWS VMs to attach an additional data disk for specified models#everything elseokstring="[ \033[32mOK\033[0m ]"warnstring="[\033[33mWARN\033[0m]"infostring="[\033[36mINFO\033[0m]"failstring="[\033[31mFAIL\033[0m]"echo-e"$infostring Checking AWS disk configuration"ifdmesg |egrep-q'xvdb';thenecho-e"$okstring Disk xvdb was found"ifmount|egrep-q'^/dev/xvdb1 on /data';thenecho-e"$okstring /dev/xvdb1 is mounted on /data"elseiflsblk -o +UUID |egrep-q'xvdb1';thenecho-e"$okstring /dev/xvdb1 is formatted"elseecho-e"$okstring AWS disk configuration is starting"echo-e"$infostring parted is creating the data disk partition"parted -a optimal --script/dev/xvdbmklabel gpt mkpart primary 0% 100%sleep5echo-e"$infostring mkfs is formatting the data disk partition as xfs"mkfs.xfs/dev/xvdb1syncsleep5echo-e"$infostring configuring mount points"dataUUID="$(lsblk -o +UUID | awk '/xvdb1/ {print $NF}')"echo"UUID=${dataUUID} /data xfs defaults 0 0"|tee-a/etc/fstabecho-e"$infostring stopping mysql services"supervisorctl stop mysqld mysqld2echo-e"$infostring moving data from old folder to new disk"mv/data/data_tempmkdir-p/datamount-amv/data_temp/*/datachown-R mysql:mysql/dataecho-e"$infostring removing old data folder"rm-rf/data_tempecho-e"$infostring starting mysql services"supervisorctl start mysqld mysqld2echo-e"$infostring filling ballast"mkdir/data/.SevOne-ballastSevOne-ballast fill-all dataecho-e"$okstring AWS disk configuration complete"df-hT //datafifielseecho-e"$infostring Disk xvdb was not found"fi
for SevOne Data Insight
Please refer to SevOne Data Insight Pre-Installation Guide for additional details.
for SD-WAN (Versa / Viptela Solution)
Please refer to SD-WAN Pre-Deployment Guide for additional details.
SevOne Appliance Configuration
Please refer to SevOne NMS Appliance Configuration Guide for details on how to s et the correct application configuration for the customer's license type and count.
SevOne Appliance Login & License
Please refer to SevOne NMS documentation for details as they apply to the Virtual Appliance running on the cloud as well.
Add Peer to Cluster
Please refer to SevOne NMS documentation for details as they apply to the Virtual Appliance running on the cloud as well.
Verify SevOne NMS
Logon to the SevOne NMS via SSH and execute the following command.
$ SevOne-act check checkoutCurrently, the command returns several errors as shown in the example below. Please disregard these errors until after SevOne NMS is updated to include checks for Amazon's AWS AMI deployed instances.
$ SevOne-act check checkout[ FAIL ] Rpm summary - 16 errors found, Run 'SevOne-act check rpm' for more information[ FAIL ] Lsof summary - 2 errors found, Run 'SevOne-act check lsof' for more information[ FAIL ] UuidsCheck summary - 1 error found, Run 'SevOne-act check uuids-check' for more informationChange IP Address
At the time of writing, the configshell and SevOne-change-ip commands are unable to respect the AWS network configuration and should not be used to change IP addresses.