| 1096 | Administrator accounts on an ExoGENI rack are documented at https://wiki.exogeni.net/doku.php?id=public:operators:start, with https://wiki.exogeni.net/doku.php?id=public:operators:start#authentication_authorization proving insight into accounts creation and usage. |
| 1097 | |
| 1098 | With requested account accessed rack head node and verified root access and group membership: |
| 1099 | {{{ |
| 1100 | LNM:~$ ssh ufl-hn.exogeni.net |
| 1101 | lnevers@ufl-hn.exogeni.net's password: |
| 1102 | Last login: Tue Apr 22 23:43:06 2014 from 128.89.255.235 |
| 1103 | |-----------------------------------------------------------------| |
| 1104 | | ____ ____ ____ ____ ____ ____ ____ | |
| 1105 | | ||E |||x |||o |||G |||E |||N |||I || | |
| 1106 | | ||__|||__|||__|||__|||__|||__|||__|| | |
| 1107 | | |/__\|/__\|/__\|/__\|/__\|/__\|/__\| | |
| 1108 | | | |
| 1109 | |-----------------------------------------------------------------| |
| 1110 | [lnevers@ufl-hn ~]$ sudo whoami |
| 1111 | [sudo] password for lnevers: |
| 1112 | root |
| 1113 | [lnevers@ufl-hn ~]$ id |
| 1114 | uid=2107(lnevers) gid=2000(nonrenci) groups=2000(nonrenci),2501(uhadmins),2507(ufladmins),9510(bbnadmins) |
| 1115 | [lnevers@ufl-hn ~]$ |
| 1116 | }}} |
| 1117 | |
| 1118 | From head node verified login and administrative access to each of the worker nodes that supply VMs. |
| 1119 | |
| 1120 | For each worker node execute the following: |
| 1121 | {{{ |
| 1122 | [lnevers@ufl-hn ~]$ for i in 1 2 3 4 5 6 7 8 9 10; do ssh -t ufl-w$i "sudo whoami; uname -r"; done |
| 1123 | lnevers@ufl-w1's password: |
| 1124 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1125 | |
| 1126 | We trust you have received the usual lecture from the local System |
| 1127 | Administrator. It usually boils down to these three things: |
| 1128 | |
| 1129 | #1) Respect the privacy of others. |
| 1130 | #2) Think before you type. |
| 1131 | #3) With great power comes great responsibility. |
| 1132 | |
| 1133 | [sudo] password for lnevers: |
| 1134 | root |
| 1135 | 2.6.32-358.el6.x86_64 |
| 1136 | Connection to ufl-w1 closed. |
| 1137 | lnevers@ufl-w2's password: |
| 1138 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1139 | |
| 1140 | We trust you have received the usual lecture from the local System |
| 1141 | Administrator. It usually boils down to these three things: |
| 1142 | |
| 1143 | #1) Respect the privacy of others. |
| 1144 | #2) Think before you type. |
| 1145 | #3) With great power comes great responsibility. |
| 1146 | |
| 1147 | [sudo] password for lnevers: |
| 1148 | root |
| 1149 | 2.6.32-358.el6.x86_64 |
| 1150 | Connection to ufl-w2 closed. |
| 1151 | lnevers@ufl-w3's password: |
| 1152 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1153 | |
| 1154 | We trust you have received the usual lecture from the local System |
| 1155 | Administrator. It usually boils down to these three things: |
| 1156 | |
| 1157 | #1) Respect the privacy of others. |
| 1158 | #2) Think before you type. |
| 1159 | #3) With great power comes great responsibility. |
| 1160 | |
| 1161 | [sudo] password for lnevers: |
| 1162 | root |
| 1163 | 2.6.32-358.el6.x86_64 |
| 1164 | Connection to ufl-w3 closed. |
| 1165 | lnevers@ufl-w4's password: |
| 1166 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1167 | |
| 1168 | We trust you have received the usual lecture from the local System |
| 1169 | Administrator. It usually boils down to these three things: |
| 1170 | |
| 1171 | #1) Respect the privacy of others. |
| 1172 | #2) Think before you type. |
| 1173 | #3) With great power comes great responsibility. |
| 1174 | |
| 1175 | [sudo] password for lnevers: |
| 1176 | root |
| 1177 | 2.6.32-358.el6.x86_64 |
| 1178 | Connection to ufl-w4 closed. |
| 1179 | lnevers@ufl-w5's password: |
| 1180 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1181 | |
| 1182 | We trust you have received the usual lecture from the local System |
| 1183 | Administrator. It usually boils down to these three things: |
| 1184 | |
| 1185 | #1) Respect the privacy of others. |
| 1186 | #2) Think before you type. |
| 1187 | #3) With great power comes great responsibility. |
| 1188 | |
| 1189 | [sudo] password for lnevers: |
| 1190 | root |
| 1191 | 2.6.32-358.el6.x86_64 |
| 1192 | Connection to ufl-w5 closed. |
| 1193 | lnevers@ufl-w6's password: |
| 1194 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1195 | |
| 1196 | We trust you have received the usual lecture from the local System |
| 1197 | Administrator. It usually boils down to these three things: |
| 1198 | |
| 1199 | #1) Respect the privacy of others. |
| 1200 | #2) Think before you type. |
| 1201 | #3) With great power comes great responsibility. |
| 1202 | |
| 1203 | [sudo] password for lnevers: |
| 1204 | root |
| 1205 | 2.6.32-358.el6.x86_64 |
| 1206 | Connection to ufl-w6 closed. |
| 1207 | lnevers@ufl-w7's password: |
| 1208 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1209 | |
| 1210 | We trust you have received the usual lecture from the local System |
| 1211 | Administrator. It usually boils down to these three things: |
| 1212 | |
| 1213 | #1) Respect the privacy of others. |
| 1214 | #2) Think before you type. |
| 1215 | #3) With great power comes great responsibility. |
| 1216 | |
| 1217 | [sudo] password for lnevers: |
| 1218 | root |
| 1219 | 2.6.32-358.el6.x86_64 |
| 1220 | Connection to ufl-w7 closed. |
| 1221 | lnevers@ufl-w8's password: |
| 1222 | Could not chdir to home directory /home/lnevers: No such file or directory |
| 1223 | |
| 1224 | We trust you have received the usual lecture from the local System |
| 1225 | Administrator. It usually boils down to these three things: |
| 1226 | |
| 1227 | #1) Respect the privacy of others. |
| 1228 | #2) Think before you type. |
| 1229 | #3) With great power comes great responsibility. |
| 1230 | |
| 1231 | [sudo] password for lnevers: |
| 1232 | root |
| 1233 | 2.6.32-358.el6.x86_64 |
| 1234 | Connection to ufl-w8 closed. |
| 1235 | ssh: connect to host ufl-w9 port 22: No route to host |
| 1236 | ssh: connect to host ufl-w10 port 22: No route to host |
| 1237 | |
| 1238 | }}} |
| 1239 | |
| 1240 | Connect to the management switch: |
| 1241 | {{{ |
| 1242 | [lnevers@ufl-hn ~]$ ssh ufl-8052.ufl.xo |
| 1243 | The authenticity of host 'ufl-8052.ufl.xo (192.168.110.2)' can't be established. |
| 1244 | DSA key fingerprint is 5a:db:7d:aa:bd:6c:02:3a:a5:29:7a:9d:6e:6f:db:de. |
| 1245 | Are you sure you want to continue connecting (yes/no)? yes |
| 1246 | Warning: Permanently added 'ufl-8052.ufl.xo,192.168.110.2' (DSA) to the list of known hosts. |
| 1247 | Enter radius password: |
| 1248 | |
| 1249 | IBM Networking Operating System RackSwitch G8052. |
| 1250 | |
| 1251 | |
| 1252 | ufl-8052.ufl.xo>ena |
| 1253 | |
| 1254 | Enable access using (oper) credentials restricted to admin accounts only. |
| 1255 | ufl-8052.ufl.xo> |
| 1256 | ???FAILURE??? |
| 1257 | |
| 1258 | #show interface status |
| 1259 | }}} |
| 1260 | |
| 1261 | }}} |
| 1262 | |
| 1263 | Connect to the !OpenFlow switch: |
| 1264 | {{{ |
| 1265 | [lnevers@ufl-hn ~]$ ssh ufl-8264.ufl.xo |
| 1266 | Enter radius password: |
| 1267 | Connection closed by 192.168.110.4 |
| 1268 | |
| 1269 | ???FAILURE??? |
| 1270 | |
| 1271 | >ena |
| 1272 | |
| 1273 | #show interface status |
| 1274 | |
| 1275 | #show version brief |
| 1276 | }}} |
| 1277 | |
| 1278 | Verify FOAM and !FlowVisor configuration files ownership and paths: |
| 1279 | {{{ |
| 1280 | [lnevers@ufl-hn ~]$ ls -l /etc/foam.passwd /etc/flowvisor.passwd /etc/flowvisor/fvpasswd /opt/foam/etc/foampasswd |
| 1281 | lrwxrwxrwx 1 root flowvisor 21 Sep 26 2013 /etc/flowvisor/fvpasswd -> /etc/flowvisor.passwd |
| 1282 | -r--r----- 1 flowvisor ufladmins 25 Sep 26 2013 /etc/flowvisor.passwd |
| 1283 | -r--r----- 1 root ufladmins 25 Sep 26 2013 /etc/foam.passwd |
| 1284 | lrwxrwxrwx 1 root root 16 Sep 26 2013 /opt/foam/etc/foampasswd -> /etc/foam.passwd |
| 1285 | [lnevers@ufl-hn ~]$ |
| 1286 | }}} |
| 1287 | |
| 1288 | Check FOAM version and FOAM configuration for site.admin.email, geni.site-tag, email.from settings on the UFL head node: |
| 1289 | {{{ |
| 1290 | }}} |
| 1291 | [lnevers@ufl-hn ~]$ foamctl admin:get-version --passwd-file=/etc/foam.passwd |
| 1292 | { |
| 1293 | "version": "0.12.3" |
| 1294 | } |
| 1295 | [lnevers@ufl-hn ~]$ |
| 1296 | |
| 1297 | [lnevers@ufl-hn ~]$ foamctl config:get-value --key="site.admin.email" --passwd-file=/opt/foam/etc/foampasswd |
| 1298 | { |
| 1299 | "value": null |
| 1300 | } |
| 1301 | [lnevers@ufl-hn ~]$ |
| 1302 | |
| 1303 | [lnevers@ufl-hn ~]$ foamctl config:get-value --key="geni.site-tag" --passwd-file=/opt/foam/etc/foampasswd |
| 1304 | { |
| 1305 | "value": "ufl-hn.exogeni.net" |
| 1306 | } |
| 1307 | [lnevers@ufl-hn ~]$ |
| 1308 | |
| 1309 | [lnevers@ufl-hn ~]$ foamctl config:get-value --key="email.from" --passwd-file=/opt/foam/etc/foampasswd |
| 1310 | { |
| 1311 | "value": "Chris Griffin <cgriffin@ufl.edu>" |
| 1312 | } |
| 1313 | [lnevers@ufl-hn ~]$ |
| 1314 | |
| 1315 | |
| 1316 | [lnevers@ufl-hn ~]$ foamctl config:get-value --key="geni.approval.approve-on-creation" --passwd-file=/opt/foam/etc/foampasswd |
| 1317 | { |
| 1318 | "value": 2 |
| 1319 | } |
| 1320 | [lnevers@ufl-hn ~]$ |
| 1321 | |
| 1322 | Show FOAM slivers details: |
| 1323 | {{{ |
| 1324 | [lnevers@ufl-hn ~]$ foamctl geni:list-slivers --passwd-file=/opt/foam/etc/foampasswd |
| 1325 | { |
| 1326 | "slivers": [ |
| 1327 | { |
| 1328 | "status": "approved", |
| 1329 | "sliver_urn": "urn:publicid:IDN+ch.geni.net:gpoamcanary+slice+sitemon:4fb9e124-2215-47ec-b996-b75a295c433d", |
| 1330 | "creation": "2013-11-19 16:44:49.657258+00:00", |
| 1331 | "pend_reason": [], |
| 1332 | "expiration": "2014-06-05 00:00:00+00:00", |
| 1333 | "deleted": "False", |
| 1334 | "user": "urn:publicid:IDN+ch.geni.net+user+asydne01", |
| 1335 | "slice_urn": "urn:publicid:IDN+ch.geni.net:gpoamcanary+slice+sitemon", |
| 1336 | "enabled": true, |
| 1337 | "email": "asydney@bbn.com", |
| 1338 | "flowvisor_slice": "4fb9e124-2215-47ec-b996-b75a295c433d", |
| 1339 | "desc": "sitemon OpenFlow resources at UFL", |
| 1340 | "ref": null, |
| 1341 | "id": 20, |
| 1342 | "uuid": "4fb9e124-2215-47ec-b996-b75a295c433d" |
| 1343 | }, |
| 1344 | { |
| 1345 | "status": "approved", |
| 1346 | "sliver_urn": "urn:publicid:IDN+ch.geni.net:gpo-infra+slice+gpoI15:0a5193e8-91f3-47a5-9aa8-c5e8955cbf69", |
| 1347 | "creation": "2013-11-25 20:40:31.615186+00:00", |
| 1348 | "pend_reason": [], |
| 1349 | "expiration": "2014-05-15 23:00:00+00:00", |
| 1350 | "deleted": "False", |
| 1351 | "user": "urn:publicid:IDN+ch.geni.net+user+jbs", |
| 1352 | "slice_urn": "urn:publicid:IDN+ch.geni.net:gpo-infra+slice+gpoI15", |
| 1353 | "enabled": true, |
| 1354 | "email": "jbs@bbn.com", |
| 1355 | "flowvisor_slice": "0a5193e8-91f3-47a5-9aa8-c5e8955cbf69", |
| 1356 | "desc": "gpoI15 Florida ExoGENI OpenFlow resources.", |
| 1357 | "ref": null, |
| 1358 | "id": 21, |
| 1359 | "uuid": "0a5193e8-91f3-47a5-9aa8-c5e8955cbf69" |
| 1360 | }, |
| 1361 | { |
| 1362 | "status": "approved", |
| 1363 | "sliver_urn": "urn:publicid:IDN+ch.geni.net:gpo-infra+slice+gpoI16:771948c8-484a-4035-937e-5769861f5a41", |
| 1364 | "creation": "2013-11-25 20:41:31.629525+00:00", |
| 1365 | "pend_reason": [], |
| 1366 | "expiration": "2014-05-15 23:00:00+00:00", |
| 1367 | "deleted": "False", |
| 1368 | "user": "urn:publicid:IDN+ch.geni.net+user+jbs", |
| 1369 | "slice_urn": "urn:publicid:IDN+ch.geni.net:gpo-infra+slice+gpoI16", |
| 1370 | "enabled": true, |
| 1371 | "email": "jbs@bbn.com", |
| 1372 | "flowvisor_slice": "771948c8-484a-4035-937e-5769861f5a41", |
| 1373 | "desc": "gpoI16 Florida ExoGENI OpenFlow resources.", |
| 1374 | "ref": null, |
| 1375 | "id": 22, |
| 1376 | "uuid": "771948c8-484a-4035-937e-5769861f5a41" |
| 1377 | } |
| 1378 | ] |
| 1379 | } |
| 1380 | [lnevers@ufl-hn ~]$ |
| 1381 | |
| 1382 | }}} |
| 1383 | |
| 1384 | Check the !FlowVisor version, list of devices, get details for a device, list of active slices, and details for one of the slices on the UFL Head node: |
| 1385 | {{{ |
| 1386 | |
| 1387 | [lnevers@ufl-hn ~]$ /opt/flowvisor/bin/fvctl --passwd-file=/etc/flowvisor/fvpasswd ping hello |
| 1388 | Got reply: |
| 1389 | PONG(fvadmin): FV version=flowvisor-0.8.1::hello |
| 1390 | |
| 1391 | [lnevers@ufl-hn ~]$ /opt/flowvisor/bin/fvctl --passwd-file=/etc/flowvisor/fvpasswd listDevices |
| 1392 | Device 0: 00:01:74:99:75:d7:69:00 |
| 1393 | |
| 1394 | [lnevers@ufl-hn ~]$ /opt/flowvisor/bin/fvctl --passwd-file=/etc/flowvisor/fvpasswd getDeviceInfo 00:01:74:99:75:d7:69:00 |
| 1395 | nPorts=21 |
| 1396 | portList=41,42,43,44,45,46,47,48,49,51,52,53,54,55,56,57,58,59,60,64,50 |
| 1397 | dpid=00:01:74:99:75:d7:69:00 |
| 1398 | remote=/192.168.110.10:6633-->/192.168.110.4:2909 |
| 1399 | portNames=41(41),42(42),43(43),44(44),45(45),46(46),47(47),48(48),49(49),51(51),52(52),53(53),54(54),55(55),56(56),57(57),58(58),59(59),60(60),64(64),50(50) |
| 1400 | |
| 1401 | [lnevers@ufl-hn ~]$ /opt/flowvisor/bin/fvctl --passwd-file=/etc/flowvisor/fvpasswd listSlices |
| 1402 | Slice 0: 4fb9e124-2215-47ec-b996-b75a295c433d |
| 1403 | Slice 1: 0a5193e8-91f3-47a5-9aa8-c5e8955cbf69 |
| 1404 | Slice 2: 771948c8-484a-4035-937e-5769861f5a41 |
| 1405 | Slice 3: fvadmin |
| 1406 | Slice 4: orca-1411 |
| 1407 | |
| 1408 | [lnevers@ufl-hn ~]$ /opt/flowvisor/bin/fvctl --passwd-file=/etc/flowvisor/fvpasswd getSliceInfo 4fb9e124-2215-47ec-b996-b75a295c433d |
| 1409 | Got reply: |
| 1410 | connection_1=00:01:74:99:75:d7:69:00-->/128.227.10.5:21931-->hafmet.gpolab.bbn.com/192.1.249.178:31750 |
| 1411 | contact_email=asydney@bbn.com |
| 1412 | controller_hostname=hafmet.gpolab.bbn.com |
| 1413 | controller_port=31750 |
| 1414 | creator=fvadmin |
| 1415 | }}} |
| 1416 | |