Changes between Version 10 and Version 11 of GENIRacksHome/InstageniRacks/ConfirmationTestStatus/UChicago


Ignore:
Timestamp:
09/18/14 14:45:07 (5 years ago)
Author:
lnevers@bbn.com
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • GENIRacksHome/InstageniRacks/ConfirmationTestStatus/UChicago

    v10 v11  
    706706
    707707== IG-CT-6 - Administrative Tests ==
     708Sent request for administrative account to site contact from the [http://groups.geni.net/geni/wiki/GeniAggregate/ChicagoInstaGENI Chicago InstaGENI] aggregate page.  Followed instructions at the [http://groups.geni.net/geni/wiki/GENIRacksAdministration/InstaGENIAdministration InstaGENI Administration] page for account request. A local administrator account was requested by joining the ''emulab-ops'' group at https://www.geni.uchicago.edu/joinproject.php3.   Once the administrative account was approved and the membership to emulab-ops was granted, proceeded to execute administrative tests. 
     709
     710{{{
     711LNM:~$ ssh control.geni.uchicago.edu
     712The authenticity of host 'control.geni.uchicago.edu (192.170.230.67)' can't be established.
     713DSA key fingerprint is 5f:a0:db:07:af:1e:fb:27:9c:76:1c:70:4f:70:6b:ef.
     714Are you sure you want to continue connecting (yes/no)? yes
     715Warning: Permanently added 'control.geni.uchicago.edu,192.170.230.67' (DSA) to the list of known hosts.
     716Welcome to Ubuntu precise (development branch) (GNU/Linux 3.2.0-23-generic x86_64)
     717
     718 * Documentation:  https://help.ubuntu.com/
     719
     720  System information as of Thu Sep 18 18:25:43 UTC 2014
     721
     722  System load:             0.0
     723  Usage of /:              36.6% of 5.85GB
     724  Memory usage:            36%
     725  Swap usage:              0%
     726  Processes:               164
     727  Users logged in:         0
     728  IP address for xenbr0:   192.170.230.67
     729  IP address for xenbr0:1: 172.16.0.1
     730  IP address for xenbr0:2: 10.249.249.253
     731  IP address for xenbr1:   10.1.1.254
     732  IP address for xenbr2:   10.2.1.254
     733  IP address for xenbr3:   10.3.1.254
     734  IP address for tun0:     10.8.0.1
     735
     736  Graph this data and manage this system at https://landscape.canonical.com/
     737New release '14.04.1 LTS' available.
     738Run 'do-release-upgrade' to upgrade to it.
     739
     740
     741The programs included with the Ubuntu system are free software;
     742the exact distribution terms for each program are described in the
     743individual files in /usr/share/doc/*/copyright.
     744
     745Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by
     746applicable law.
     747
     748To run a command as administrator (user "root"), use "sudo <command>".
     749See "man sudo_root" for details.
     750
     751lnevers@chicago:~$ sudo whoami
     752root
     753lnevers@chicago:~$ uname -a
     754Linux chicago.control-nodes.geniracks.net 3.2.0-23-generic #36-Ubuntu SMP Tue Apr 10 20:39:51 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux
     755lnevers@chicago:~$
     756}}}
     757
     758Also access the boss node:
     759{{{
     760LNM:~$ ssh boss.geni.uchicago.edu
     761The authenticity of host 'boss.geni.uchicago.edu (192.170.230.68)' can't be established.
     762RSA key fingerprint is 46:63:92:67:c8:75:20:4e:52:9f:2d:f6:cb:58:16:77.
     763Are you sure you want to continue connecting (yes/no)? yes
     764Warning: Permanently added 'boss.geni.uchicago.edu,192.170.230.68' (RSA) to the list of known hosts.
     765FreeBSD 9.0-STABLE (TESTBED-XEN) #0: Tue Apr 30 14:24:36 MDT 2013
     766
     767Welcome to FreeBSD!
     768
     769Time to change your password? Type "passwd" and follow the prompts.
     770                -- Dru <genesis@istar.ca>
     771> bash
     772[lnevers@boss ~]$ sudo whoami
     773root
     774[lnevers@boss ~]$ uname -a
     775FreeBSD boss.geni.uchicago.edu 9.0-STABLE FreeBSD 9.0-STABLE #0: Tue Apr 30 14:24:36 MDT 2013     root@n1.one-freebsd.testbed.emulab.net:/usr/obj/mnt/src/sys/TESTBED-XEN  i386
     776[lnevers@boss ~]$
     777}}}
     778
     779From boss node accessed each of the experiment nodes that support VMs:
     780{{{
     781[lnevers@boss ~]$ for i in pc1 pc2 pc3; do ssh $i "echo -n '===> Host: ';hostname;sudo whoami;uname -a;echo"; done
     782Warning: Permanently added 'pc1.geni.uchicago.edu' (RSA) to the list of known hosts.
     783===> Host: vhost1.shared-nodes.emulab-ops.geni.uchicago.edu
     784root
     785Linux vhost1.shared-nodes.emulab-ops.geni.uchicago.edu 2.6.32-042stab049.6.emulab.1 #1 SMP Mon May 21 14:36:04 MDT 2012 x86_64 x86_64 x86_64 GNU/Linux
     786
     787Warning: Permanently added 'pc2.geni.uchicago.edu' (RSA) to the list of known hosts.
     788===> Host: vhost2.shared-nodes.emulab-ops.geni.uchicago.edu
     789root
     790Linux vhost2.shared-nodes.emulab-ops.geni.uchicago.edu 3.2.0-56-generic #86-Ubuntu SMP Wed Oct 23 09:20:45 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
     791
     792Warning: Permanently added 'pc3.geni.uchicago.edu' (RSA) to the list of known hosts.
     793===> Host: vhost3.shared-nodes.emulab-ops.geni.uchicago.edu
     794root
     795Linux vhost3.shared-nodes.emulab-ops.geni.uchicago.edu 3.2.0-56-generic #86-Ubuntu SMP Wed Oct 23 09:20:45 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
     796
     797}}}
     798
     799In order to access Dedicated Nodes some experiment must be running on the raw-pc device. At the time of this capture two raw-pc nodes were in use (pc4 and pc5):
     800{{{
     801[lnevers@boss ~]$ sudo ssh pc4
     802[root@pc ~]#  sudo whoami
     803root
     804[root@pc ~]#  uname -a
     805Linux pc.lnx.ch-geni-net.geni.uchicago.edu 2.6.40-4.emulab2.fc15.i686.PAE #1 SMP Tue Feb 26 13:35:12 MST 2013 i686 i686 i386 GNU/Linux
     806[root@pc ~]#  exit
     807logout
     808Connection to pc4.geni.uchicago.edu closed.
     809[lnevers@boss ~]$ sudo ssh pc5
     810 sudo whoami
     811 uname -a
     812 exit[root@pc2 ~]#  sudo whoami
     813root
     814[root@pc2 ~]#  uname -a
     815Linux pc2.lnx.ch-geni-net.geni.uchicago.edu 2.6.40-4.emulab2.fc15.i686.PAE #1 SMP Tue Feb 26 13:35:12 MST 2013 i686 i686 i386 GNU/Linux
     816[root@pc2 ~]#  exit
     817logout
     818Connection to pc5.geni.uchicago.edu closed.
     819[lnevers@boss ~]$
     820}}}
     821
     822Further verified access by ssh from ops.instageni.gpolab.bbn.com to boss.instageni.gpolab.bbn.com, which is usually restricted for non-admin users:
     823{{{
     824LNM:~$  ssh ops.geni.uchicago.edu
     825The authenticity of host 'ops.geni.uchicago.edu (192.170.230.69)' can't be established.
     826RSA key fingerprint is 46:63:92:67:c8:75:20:4e:52:9f:2d:f6:cb:58:16:77.
     827Are you sure you want to continue connecting (yes/no)? yes
     828Warning: Permanently added 'ops.geni.uchicago.edu,192.170.230.69' (RSA) to the list of known hosts.
     829FreeBSD 9.0-STABLE (TESTBED-XEN) #0: Tue Apr 30 14:24:36 MDT 2013
     830
     831Welcome to FreeBSD!
     832
     833If you accidentally end up inside vi, you can quit it by pressing Escape, colon
     834(:), q (q), bang (!) and pressing return.
     835> bash
     836[lnevers@ops ~]$ sudo whoami
     837root
     838[lnevers@ops ~]$ uname -a
     839FreeBSD ops.geni.uchicago.edu 9.0-STABLE FreeBSD 9.0-STABLE #0: Tue Apr 30 14:24:36 MDT 2013     root@n1.one-freebsd.testbed.emulab.net:/usr/obj/mnt/src/sys/TESTBED-XEN  i386
     840[lnevers@ops ~]$
     841[lnevers@ops ~]$ ssh boss
     842The authenticity of host 'boss.geni.uchicago.edu (192.170.230.68)' can't be established.
     843ECDSA key fingerprint is bd:05:23:a7:5b:cc:78:c8:8c:a8:d3:e9:f7:27:53:cb.
     844Are you sure you want to continue connecting (yes/no)? yes
     845Warning: Permanently added 'boss.geni.uchicago.edu' (ECDSA) to the list of known hosts.
     846Last login: Thu Sep 18 13:26:17 2014 from dhcp89-73-116.bbn.com
     847FreeBSD 9.0-STABLE (TESTBED-XEN) #0: Tue Apr 30 14:24:36 MDT 2013
     848
     849Welcome to FreeBSD!
     850
     851You can permanently set environment variables for your shell by putting them
     852in a startup file for the shell.  The name of the startup file varies
     853depending on the shell - csh and tcsh uses .login, bash, sh, ksh and zsh use
     854.profile.  When using bash, sh, ksh or zsh, don't forget to export the
     855variable.
     856> bash
     857[lnevers@boss ~]$
     858
     859}}}
     860Access infrastructure switches using documented password. First connect to the switch named procurve1 the control network switch:
     861{{{
     862[lnevers@boss ~]$ sudo more /usr/testbed/etc/switch.pswd
     863XXXXXXXXX
     864[lnevers@boss ~]$ telnet procurve1
     865Trying 10.1.1.253...
     866Connected to procurve1.
     867Escape character is '^]'.
     868
     869HP J9623A E2620-24 Switch
     870Software revision RA.15.08.0009
     871
     872Copyright (C) 1991-2012 Hewlett-Packard Development Company, L.P.
     873
     874                   RESTRICTED RIGHTS LEGEND
     875 Confidential computer software.  Valid license from HP required for possession,
     876 use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer
     877 Software, Computer Software Documentation, and Technical Data for Commercial
     878 Items are licensed to the U.S. Government under vendor's standard commercial
     879 license.
     880                   HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.
     881                   20555 State Highway 249, Houston, TX 77070
     882
     883We'd like to keep you up to date about:
     884  * Software feature updates
     885  * New product announcements
     886  * Special events
     887Please register your products now at:  www.hp.com/networking/register
     888
     889Username: manager
     890Password:
     891
     892HP-E2620-24# show version
     893Image stamp:    /ws/swbuildm/rel_galt_qaoff/code/build/xform(rel_galt_qaoff)
     894                May  9 2012 15:28:43
     895                RA.15.08.0009
     896                474
     897Boot Image:     Primary
     898HP-E2620-24# show vlan
     899
     900 Status and Counters - VLAN Information
     901
     902  Maximum VLANs to support : 50                   
     903  Primary VLAN : DEFAULT_VLAN     
     904  Management VLAN : control-hardware
     905
     906  VLAN ID Name                             | Status     Voice Jumbo
     907  ------- -------------------------------- + ---------- ----- -----
     908  1       DEFAULT_VLAN                     | Port-based No    No   
     909  10      control-hardware                 | Port-based No    No   
     910  11      control-alternate                | Port-based No    No   
     911 
     912
     913HP-E2620-24# show running-config
     914
     915Running configuration:
     916
     917; J9623A Configuration Editor; Created on release #RA.15.08.0009
     918; Ver #02:13.2d:3c
     919hostname "HP-E2620-24"
     920max-vlans 50
     921no stack
     922no web-management
     923ip default-gateway 10.1.1.254
     924snmp-server community "xxx" unrestricted
     925aaa authentication ssh login public-key
     926aaa authentication ssh enable public-key
     927vlan 1
     928   name "DEFAULT_VLAN"
     929   no untagged 23-24
     930   untagged 1-22,25-28
     931   ip address 10.254.254.253 255.255.255.0
     932   ip igmp
     933   exit
     934vlan 10
     935   name "control-hardware"
     936   untagged 23
     937   ip address 10.1.1.253 255.255.255.0
     938   exit
     939vlan 11
     940   name "control-alternate"
     941   untagged 24
     942   ip address 10.2.1.253 255.255.255.0
     943   exit
     944management-vlan 10
     945no dhcp config-file-update
     946password xxx
     947password xxx
     948
     949HP-E2620-24# 
     950HP-E2620-24# exit
     951HP-E2620-24> exit
     952Do you want to log out [y/n]? y
     953Connection closed by foreign host.
     954[lnevers@boss ~]$
     955}}}
     956
     957Connect to the switch named procurve2 the dataplane network switch via ssh using the documented password:
     958{{{
     959[lnevers@boss ~]$ sudo more /usr/testbed/etc/switch.pswd
     960xxxxxxx
     961[lnevers@boss ~]$ telnet procurve2
     962Trying 10.3.1.253...
     963Connected to procurve2.
     964Escape character is '^]'.
     965
     966HP J8697A Switch E5406zl
     967Software revision K.15.06.5008
     968
     969Copyright (C) 1991-2012 Hewlett-Packard Development Company, L.P.
     970
     971                   RESTRICTED RIGHTS LEGEND
     972 Confidential computer software.  Valid license from HP required for possession,
     973 use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer
     974 Software, Computer Software Documentation, and Technical Data for Commercial
     975 Items are licensed to the U.S. Government under vendor's standard commercial
     976 license.
     977                   HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P.
     978                   20555 State Highway 249, Houston, TX 77070
     979
     980We'd like to keep you up to date about:
     981  * Software feature updates
     982  * New product announcements
     983  * Special events
     984Please register your products now at:  www.hp.com/networking/register
     985
     986Username: manager
     987Password:
     988
     989HP-E5406zl# show version
     990Image stamp:    /ws/swbuildm/of_bridge_qaoff/code/build/btm(of_bridge_qaoff)
     991                Feb 18 2012 11:26:28
     992                K.15.06.5008
     993                79
     994Boot Image:     Primary
     995HP-E5406zl# show vlans
     996
     997 Status and Counters - VLAN Information
     998
     999  Maximum VLANs to support : 256                 
     1000  Primary VLAN : DEFAULT_VLAN   
     1001  Management VLAN : control-hardware
     1002
     1003  VLAN ID Name                             | Status     Voice Jumbo
     1004  ------- -------------------------------- + ---------- ----- -----
     1005  1       DEFAULT_VLAN                     | Port-based No    No   
     1006  10      control-hardware                 | Port-based No    No   
     1007  257     5000                             | Port-based No    No   
     1008  258     5187                             | Port-based No    No   
     1009  2491    5005                             | Port-based No    No   
     1010 
     1011
     1012HP-E5406zl# show running-config
     1013
     1014Running configuration:
     1015
     1016; J8697A Configuration Editor; Created on release #K.15.06.5008
     1017; Ver #02:10.0d:1f
     1018
     1019hostname "HP-E5406zl"
     1020module 1 type J9549A
     1021interface A1
     1022   speed-duplex auto-1000
     1023exit
     1024interface A2
     1025   speed-duplex auto-1000
     1026exit
     1027interface A3
     1028   speed-duplex auto-1000
     1029exit
     1030interface A4
     1031   speed-duplex auto-1000
     1032exit
     1033interface A5
     1034   speed-duplex auto-1000
     1035exit
     1036interface A6
     1037   speed-duplex auto-1000
     1038exit
     1039interface A7
     1040   speed-duplex auto-1000
     1041exit
     1042interface A8
     1043   speed-duplex auto-1000
     1044exit
     1045interface A9
     1046   speed-duplex auto-1000
     1047exit
     1048interface A10
     1049   speed-duplex auto-1000
     1050exit
     1051interface A13
     1052   speed-duplex auto-1000
     1053exit
     1054interface A16
     1055   speed-duplex auto-1000
     1056exit
     1057ip default-gateway 10.3.1.7
     1058vlan 1
     1059   name "DEFAULT_VLAN"
     1060   forbid A1-A9
     1061   untagged A11-A12,A14-A15,A17-A19,A21-A24
     1062   no untagged A1-A10,A13,A16,A20
     1063   no ip address
     1064   exit
     1065vlan 10
     1066   name "control-hardware"
     1067   untagged A20
     1068   ip address 10.3.1.253 255.255.255.0
     1069   exit
     1070vlan 257
     1071   name "5000"
     1072   untagged A1-A9
     1073   no ip address
     1074   exit
     1075vlan 2491
     1076   name "5005"
     1077   tagged A16
     1078   no ip address
     1079   exit
     1080vlan 258
     1081   name "5187"
     1082   untagged A10,A13
     1083   no ip address
     1084   exit
     1085no web-management
     1086openflow
     1087   vlan 2491
     1088      enable
     1089      controller "tcp:10.3.1.7:6633" fail-secure on
     1090      exit
     1091   exit
     1092snmp-server community "xxx" unrestricted
     1093aaa authentication ssh login public-key
     1094aaa authentication ssh enable public-key
     1095management-vlan 10
     1096no autorun
     1097no dhcp config-file-update
     1098no dhcp image-file-update
     1099password xxx
     1100password xxx
     1101
     1102HP-E5406zl#
     1103HP-E5406zl# exit
     1104HP-E5406zl> exi
     1105Do you want to log out [y/n]? y
     1106Connection closed by foreign host.
     1107[lnevers@boss ~]$
     1108}}}
     1109
     1110Access the FOAM VM and gather information for version
     1111{{{
     1112LNM:~$ ssh lnevers@foam.geni.uchicago.edu
     1113
     1114sudo foamctl admin:get-version  --passwd-file=/etc/foam.passwd
     1115
     1116}}}
     1117Check FOAM configuration for  site.admin.email, geni.site-tag, email.from settings:
     1118{{{
     1119foamctl config:get-value --key="site.admin.email"  --passwd-file=/etc/foam.passwd
     1120
     1121foamctl config:get-value --key="geni.site-tag"  --passwd-file=/etc/foam.passwd
     1122
     1123foamctl config:get-value --key="email.from"  --passwd-file=/etc/foam.passwd
     1124
     1125# check if FOAM auto-approve is on. Value 2 = auto-approve is on.
     1126
     1127foamctl config:get-value --key="geni.approval.approve-on-creation"  --passwd-file=/etc/foam.passwd
     1128
     1129}}}
     1130
     1131Show FOAM slivers details:
     1132
     1133{{{
     1134foamctl geni:list-slivers --passwd-file=/etc/foam.passwd
     1135
     1136}}}
     1137Access the FlowVisor VM and gather version information:
     1138{{{
     1139
     1140ssh lnevers@flowvisor.geni.uchicago.edu
     1141}}}
     1142Check the !FlowVisor version, list of devices, get details for a device, list of active slices, and details for one of the slices:
     1143{{{     
     1144
     1145fvctl --passwd-file=/etc/flowvisor.passwd ping hello
     1146
     1147# Devices
     1148fvctl --passwd-file=/etc/flowvisor.passwd listDevices
     1149
     1150fvctl --passwd-file=/etc/flowvisor.passwd getDeviceInfo 06:d6:6c:3b:e5:68:00:00
     1151
     1152#Slices
     1153fvctl --passwd-file=/etc/flowvisor.passwd listSlices
     1154
     1155fvctl --passwd-file=/etc/flowvisor.passwd getSliceInfo 5c956f94-5e05-40b5-948f-34d0149d9182
     1156
     1157}}}
     1158
     1159Check the FlowVisor setting:
     1160{{{
     1161fvctl --passwd-file=/etc/flowvisor.passwd dumpConfig /tmp/flowvisor-config
     1162more /tmp/flowvisor-config
     1163
     1164}}}
    7081165
    7091166----