| 708 | Sent request for administrative account to site contact from the [http://groups.geni.net/geni/wiki/GeniAggregate/ChicagoInstaGENI Chicago InstaGENI] aggregate page. Followed instructions at the [http://groups.geni.net/geni/wiki/GENIRacksAdministration/InstaGENIAdministration InstaGENI Administration] page for account request. A local administrator account was requested by joining the ''emulab-ops'' group at https://www.geni.uchicago.edu/joinproject.php3. Once the administrative account was approved and the membership to emulab-ops was granted, proceeded to execute administrative tests. |
| 709 | |
| 710 | {{{ |
| 711 | LNM:~$ ssh control.geni.uchicago.edu |
| 712 | The authenticity of host 'control.geni.uchicago.edu (192.170.230.67)' can't be established. |
| 713 | DSA key fingerprint is 5f:a0:db:07:af:1e:fb:27:9c:76:1c:70:4f:70:6b:ef. |
| 714 | Are you sure you want to continue connecting (yes/no)? yes |
| 715 | Warning: Permanently added 'control.geni.uchicago.edu,192.170.230.67' (DSA) to the list of known hosts. |
| 716 | Welcome to Ubuntu precise (development branch) (GNU/Linux 3.2.0-23-generic x86_64) |
| 717 | |
| 718 | * Documentation: https://help.ubuntu.com/ |
| 719 | |
| 720 | System information as of Thu Sep 18 18:25:43 UTC 2014 |
| 721 | |
| 722 | System load: 0.0 |
| 723 | Usage of /: 36.6% of 5.85GB |
| 724 | Memory usage: 36% |
| 725 | Swap usage: 0% |
| 726 | Processes: 164 |
| 727 | Users logged in: 0 |
| 728 | IP address for xenbr0: 192.170.230.67 |
| 729 | IP address for xenbr0:1: 172.16.0.1 |
| 730 | IP address for xenbr0:2: 10.249.249.253 |
| 731 | IP address for xenbr1: 10.1.1.254 |
| 732 | IP address for xenbr2: 10.2.1.254 |
| 733 | IP address for xenbr3: 10.3.1.254 |
| 734 | IP address for tun0: 10.8.0.1 |
| 735 | |
| 736 | Graph this data and manage this system at https://landscape.canonical.com/ |
| 737 | New release '14.04.1 LTS' available. |
| 738 | Run 'do-release-upgrade' to upgrade to it. |
| 739 | |
| 740 | |
| 741 | The programs included with the Ubuntu system are free software; |
| 742 | the exact distribution terms for each program are described in the |
| 743 | individual files in /usr/share/doc/*/copyright. |
| 744 | |
| 745 | Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by |
| 746 | applicable law. |
| 747 | |
| 748 | To run a command as administrator (user "root"), use "sudo <command>". |
| 749 | See "man sudo_root" for details. |
| 750 | |
| 751 | lnevers@chicago:~$ sudo whoami |
| 752 | root |
| 753 | lnevers@chicago:~$ uname -a |
| 754 | Linux chicago.control-nodes.geniracks.net 3.2.0-23-generic #36-Ubuntu SMP Tue Apr 10 20:39:51 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux |
| 755 | lnevers@chicago:~$ |
| 756 | }}} |
| 757 | |
| 758 | Also access the boss node: |
| 759 | {{{ |
| 760 | LNM:~$ ssh boss.geni.uchicago.edu |
| 761 | The authenticity of host 'boss.geni.uchicago.edu (192.170.230.68)' can't be established. |
| 762 | RSA key fingerprint is 46:63:92:67:c8:75:20:4e:52:9f:2d:f6:cb:58:16:77. |
| 763 | Are you sure you want to continue connecting (yes/no)? yes |
| 764 | Warning: Permanently added 'boss.geni.uchicago.edu,192.170.230.68' (RSA) to the list of known hosts. |
| 765 | FreeBSD 9.0-STABLE (TESTBED-XEN) #0: Tue Apr 30 14:24:36 MDT 2013 |
| 766 | |
| 767 | Welcome to FreeBSD! |
| 768 | |
| 769 | Time to change your password? Type "passwd" and follow the prompts. |
| 770 | -- Dru <genesis@istar.ca> |
| 771 | > bash |
| 772 | [lnevers@boss ~]$ sudo whoami |
| 773 | root |
| 774 | [lnevers@boss ~]$ uname -a |
| 775 | FreeBSD boss.geni.uchicago.edu 9.0-STABLE FreeBSD 9.0-STABLE #0: Tue Apr 30 14:24:36 MDT 2013 root@n1.one-freebsd.testbed.emulab.net:/usr/obj/mnt/src/sys/TESTBED-XEN i386 |
| 776 | [lnevers@boss ~]$ |
| 777 | }}} |
| 778 | |
| 779 | From boss node accessed each of the experiment nodes that support VMs: |
| 780 | {{{ |
| 781 | [lnevers@boss ~]$ for i in pc1 pc2 pc3; do ssh $i "echo -n '===> Host: ';hostname;sudo whoami;uname -a;echo"; done |
| 782 | Warning: Permanently added 'pc1.geni.uchicago.edu' (RSA) to the list of known hosts. |
| 783 | ===> Host: vhost1.shared-nodes.emulab-ops.geni.uchicago.edu |
| 784 | root |
| 785 | Linux vhost1.shared-nodes.emulab-ops.geni.uchicago.edu 2.6.32-042stab049.6.emulab.1 #1 SMP Mon May 21 14:36:04 MDT 2012 x86_64 x86_64 x86_64 GNU/Linux |
| 786 | |
| 787 | Warning: Permanently added 'pc2.geni.uchicago.edu' (RSA) to the list of known hosts. |
| 788 | ===> Host: vhost2.shared-nodes.emulab-ops.geni.uchicago.edu |
| 789 | root |
| 790 | Linux vhost2.shared-nodes.emulab-ops.geni.uchicago.edu 3.2.0-56-generic #86-Ubuntu SMP Wed Oct 23 09:20:45 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux |
| 791 | |
| 792 | Warning: Permanently added 'pc3.geni.uchicago.edu' (RSA) to the list of known hosts. |
| 793 | ===> Host: vhost3.shared-nodes.emulab-ops.geni.uchicago.edu |
| 794 | root |
| 795 | Linux vhost3.shared-nodes.emulab-ops.geni.uchicago.edu 3.2.0-56-generic #86-Ubuntu SMP Wed Oct 23 09:20:45 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux |
| 796 | |
| 797 | }}} |
| 798 | |
| 799 | In order to access Dedicated Nodes some experiment must be running on the raw-pc device. At the time of this capture two raw-pc nodes were in use (pc4 and pc5): |
| 800 | {{{ |
| 801 | [lnevers@boss ~]$ sudo ssh pc4 |
| 802 | [root@pc ~]# sudo whoami |
| 803 | root |
| 804 | [root@pc ~]# uname -a |
| 805 | Linux pc.lnx.ch-geni-net.geni.uchicago.edu 2.6.40-4.emulab2.fc15.i686.PAE #1 SMP Tue Feb 26 13:35:12 MST 2013 i686 i686 i386 GNU/Linux |
| 806 | [root@pc ~]# exit |
| 807 | logout |
| 808 | Connection to pc4.geni.uchicago.edu closed. |
| 809 | [lnevers@boss ~]$ sudo ssh pc5 |
| 810 | sudo whoami |
| 811 | uname -a |
| 812 | exit[root@pc2 ~]# sudo whoami |
| 813 | root |
| 814 | [root@pc2 ~]# uname -a |
| 815 | Linux pc2.lnx.ch-geni-net.geni.uchicago.edu 2.6.40-4.emulab2.fc15.i686.PAE #1 SMP Tue Feb 26 13:35:12 MST 2013 i686 i686 i386 GNU/Linux |
| 816 | [root@pc2 ~]# exit |
| 817 | logout |
| 818 | Connection to pc5.geni.uchicago.edu closed. |
| 819 | [lnevers@boss ~]$ |
| 820 | }}} |
| 821 | |
| 822 | Further verified access by ssh from ops.instageni.gpolab.bbn.com to boss.instageni.gpolab.bbn.com, which is usually restricted for non-admin users: |
| 823 | {{{ |
| 824 | LNM:~$ ssh ops.geni.uchicago.edu |
| 825 | The authenticity of host 'ops.geni.uchicago.edu (192.170.230.69)' can't be established. |
| 826 | RSA key fingerprint is 46:63:92:67:c8:75:20:4e:52:9f:2d:f6:cb:58:16:77. |
| 827 | Are you sure you want to continue connecting (yes/no)? yes |
| 828 | Warning: Permanently added 'ops.geni.uchicago.edu,192.170.230.69' (RSA) to the list of known hosts. |
| 829 | FreeBSD 9.0-STABLE (TESTBED-XEN) #0: Tue Apr 30 14:24:36 MDT 2013 |
| 830 | |
| 831 | Welcome to FreeBSD! |
| 832 | |
| 833 | If you accidentally end up inside vi, you can quit it by pressing Escape, colon |
| 834 | (:), q (q), bang (!) and pressing return. |
| 835 | > bash |
| 836 | [lnevers@ops ~]$ sudo whoami |
| 837 | root |
| 838 | [lnevers@ops ~]$ uname -a |
| 839 | FreeBSD ops.geni.uchicago.edu 9.0-STABLE FreeBSD 9.0-STABLE #0: Tue Apr 30 14:24:36 MDT 2013 root@n1.one-freebsd.testbed.emulab.net:/usr/obj/mnt/src/sys/TESTBED-XEN i386 |
| 840 | [lnevers@ops ~]$ |
| 841 | [lnevers@ops ~]$ ssh boss |
| 842 | The authenticity of host 'boss.geni.uchicago.edu (192.170.230.68)' can't be established. |
| 843 | ECDSA key fingerprint is bd:05:23:a7:5b:cc:78:c8:8c:a8:d3:e9:f7:27:53:cb. |
| 844 | Are you sure you want to continue connecting (yes/no)? yes |
| 845 | Warning: Permanently added 'boss.geni.uchicago.edu' (ECDSA) to the list of known hosts. |
| 846 | Last login: Thu Sep 18 13:26:17 2014 from dhcp89-73-116.bbn.com |
| 847 | FreeBSD 9.0-STABLE (TESTBED-XEN) #0: Tue Apr 30 14:24:36 MDT 2013 |
| 848 | |
| 849 | Welcome to FreeBSD! |
| 850 | |
| 851 | You can permanently set environment variables for your shell by putting them |
| 852 | in a startup file for the shell. The name of the startup file varies |
| 853 | depending on the shell - csh and tcsh uses .login, bash, sh, ksh and zsh use |
| 854 | .profile. When using bash, sh, ksh or zsh, don't forget to export the |
| 855 | variable. |
| 856 | > bash |
| 857 | [lnevers@boss ~]$ |
| 858 | |
| 859 | }}} |
| 860 | Access infrastructure switches using documented password. First connect to the switch named procurve1 the control network switch: |
| 861 | {{{ |
| 862 | [lnevers@boss ~]$ sudo more /usr/testbed/etc/switch.pswd |
| 863 | XXXXXXXXX |
| 864 | [lnevers@boss ~]$ telnet procurve1 |
| 865 | Trying 10.1.1.253... |
| 866 | Connected to procurve1. |
| 867 | Escape character is '^]'. |
| 868 | |
| 869 | HP J9623A E2620-24 Switch |
| 870 | Software revision RA.15.08.0009 |
| 871 | |
| 872 | Copyright (C) 1991-2012 Hewlett-Packard Development Company, L.P. |
| 873 | |
| 874 | RESTRICTED RIGHTS LEGEND |
| 875 | Confidential computer software. Valid license from HP required for possession, |
| 876 | use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer |
| 877 | Software, Computer Software Documentation, and Technical Data for Commercial |
| 878 | Items are licensed to the U.S. Government under vendor's standard commercial |
| 879 | license. |
| 880 | HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. |
| 881 | 20555 State Highway 249, Houston, TX 77070 |
| 882 | |
| 883 | We'd like to keep you up to date about: |
| 884 | * Software feature updates |
| 885 | * New product announcements |
| 886 | * Special events |
| 887 | Please register your products now at: www.hp.com/networking/register |
| 888 | |
| 889 | Username: manager |
| 890 | Password: |
| 891 | |
| 892 | HP-E2620-24# show version |
| 893 | Image stamp: /ws/swbuildm/rel_galt_qaoff/code/build/xform(rel_galt_qaoff) |
| 894 | May 9 2012 15:28:43 |
| 895 | RA.15.08.0009 |
| 896 | 474 |
| 897 | Boot Image: Primary |
| 898 | HP-E2620-24# show vlan |
| 899 | |
| 900 | Status and Counters - VLAN Information |
| 901 | |
| 902 | Maximum VLANs to support : 50 |
| 903 | Primary VLAN : DEFAULT_VLAN |
| 904 | Management VLAN : control-hardware |
| 905 | |
| 906 | VLAN ID Name | Status Voice Jumbo |
| 907 | ------- -------------------------------- + ---------- ----- ----- |
| 908 | 1 DEFAULT_VLAN | Port-based No No |
| 909 | 10 control-hardware | Port-based No No |
| 910 | 11 control-alternate | Port-based No No |
| 911 | |
| 912 | |
| 913 | HP-E2620-24# show running-config |
| 914 | |
| 915 | Running configuration: |
| 916 | |
| 917 | ; J9623A Configuration Editor; Created on release #RA.15.08.0009 |
| 918 | ; Ver #02:13.2d:3c |
| 919 | hostname "HP-E2620-24" |
| 920 | max-vlans 50 |
| 921 | no stack |
| 922 | no web-management |
| 923 | ip default-gateway 10.1.1.254 |
| 924 | snmp-server community "xxx" unrestricted |
| 925 | aaa authentication ssh login public-key |
| 926 | aaa authentication ssh enable public-key |
| 927 | vlan 1 |
| 928 | name "DEFAULT_VLAN" |
| 929 | no untagged 23-24 |
| 930 | untagged 1-22,25-28 |
| 931 | ip address 10.254.254.253 255.255.255.0 |
| 932 | ip igmp |
| 933 | exit |
| 934 | vlan 10 |
| 935 | name "control-hardware" |
| 936 | untagged 23 |
| 937 | ip address 10.1.1.253 255.255.255.0 |
| 938 | exit |
| 939 | vlan 11 |
| 940 | name "control-alternate" |
| 941 | untagged 24 |
| 942 | ip address 10.2.1.253 255.255.255.0 |
| 943 | exit |
| 944 | management-vlan 10 |
| 945 | no dhcp config-file-update |
| 946 | password xxx |
| 947 | password xxx |
| 948 | |
| 949 | HP-E2620-24# |
| 950 | HP-E2620-24# exit |
| 951 | HP-E2620-24> exit |
| 952 | Do you want to log out [y/n]? y |
| 953 | Connection closed by foreign host. |
| 954 | [lnevers@boss ~]$ |
| 955 | }}} |
| 956 | |
| 957 | Connect to the switch named procurve2 the dataplane network switch via ssh using the documented password: |
| 958 | {{{ |
| 959 | [lnevers@boss ~]$ sudo more /usr/testbed/etc/switch.pswd |
| 960 | xxxxxxx |
| 961 | [lnevers@boss ~]$ telnet procurve2 |
| 962 | Trying 10.3.1.253... |
| 963 | Connected to procurve2. |
| 964 | Escape character is '^]'. |
| 965 | |
| 966 | HP J8697A Switch E5406zl |
| 967 | Software revision K.15.06.5008 |
| 968 | |
| 969 | Copyright (C) 1991-2012 Hewlett-Packard Development Company, L.P. |
| 970 | |
| 971 | RESTRICTED RIGHTS LEGEND |
| 972 | Confidential computer software. Valid license from HP required for possession, |
| 973 | use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer |
| 974 | Software, Computer Software Documentation, and Technical Data for Commercial |
| 975 | Items are licensed to the U.S. Government under vendor's standard commercial |
| 976 | license. |
| 977 | HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. |
| 978 | 20555 State Highway 249, Houston, TX 77070 |
| 979 | |
| 980 | We'd like to keep you up to date about: |
| 981 | * Software feature updates |
| 982 | * New product announcements |
| 983 | * Special events |
| 984 | Please register your products now at: www.hp.com/networking/register |
| 985 | |
| 986 | Username: manager |
| 987 | Password: |
| 988 | |
| 989 | HP-E5406zl# show version |
| 990 | Image stamp: /ws/swbuildm/of_bridge_qaoff/code/build/btm(of_bridge_qaoff) |
| 991 | Feb 18 2012 11:26:28 |
| 992 | K.15.06.5008 |
| 993 | 79 |
| 994 | Boot Image: Primary |
| 995 | HP-E5406zl# show vlans |
| 996 | |
| 997 | Status and Counters - VLAN Information |
| 998 | |
| 999 | Maximum VLANs to support : 256 |
| 1000 | Primary VLAN : DEFAULT_VLAN |
| 1001 | Management VLAN : control-hardware |
| 1002 | |
| 1003 | VLAN ID Name | Status Voice Jumbo |
| 1004 | ------- -------------------------------- + ---------- ----- ----- |
| 1005 | 1 DEFAULT_VLAN | Port-based No No |
| 1006 | 10 control-hardware | Port-based No No |
| 1007 | 257 5000 | Port-based No No |
| 1008 | 258 5187 | Port-based No No |
| 1009 | 2491 5005 | Port-based No No |
| 1010 | |
| 1011 | |
| 1012 | HP-E5406zl# show running-config |
| 1013 | |
| 1014 | Running configuration: |
| 1015 | |
| 1016 | ; J8697A Configuration Editor; Created on release #K.15.06.5008 |
| 1017 | ; Ver #02:10.0d:1f |
| 1018 | |
| 1019 | hostname "HP-E5406zl" |
| 1020 | module 1 type J9549A |
| 1021 | interface A1 |
| 1022 | speed-duplex auto-1000 |
| 1023 | exit |
| 1024 | interface A2 |
| 1025 | speed-duplex auto-1000 |
| 1026 | exit |
| 1027 | interface A3 |
| 1028 | speed-duplex auto-1000 |
| 1029 | exit |
| 1030 | interface A4 |
| 1031 | speed-duplex auto-1000 |
| 1032 | exit |
| 1033 | interface A5 |
| 1034 | speed-duplex auto-1000 |
| 1035 | exit |
| 1036 | interface A6 |
| 1037 | speed-duplex auto-1000 |
| 1038 | exit |
| 1039 | interface A7 |
| 1040 | speed-duplex auto-1000 |
| 1041 | exit |
| 1042 | interface A8 |
| 1043 | speed-duplex auto-1000 |
| 1044 | exit |
| 1045 | interface A9 |
| 1046 | speed-duplex auto-1000 |
| 1047 | exit |
| 1048 | interface A10 |
| 1049 | speed-duplex auto-1000 |
| 1050 | exit |
| 1051 | interface A13 |
| 1052 | speed-duplex auto-1000 |
| 1053 | exit |
| 1054 | interface A16 |
| 1055 | speed-duplex auto-1000 |
| 1056 | exit |
| 1057 | ip default-gateway 10.3.1.7 |
| 1058 | vlan 1 |
| 1059 | name "DEFAULT_VLAN" |
| 1060 | forbid A1-A9 |
| 1061 | untagged A11-A12,A14-A15,A17-A19,A21-A24 |
| 1062 | no untagged A1-A10,A13,A16,A20 |
| 1063 | no ip address |
| 1064 | exit |
| 1065 | vlan 10 |
| 1066 | name "control-hardware" |
| 1067 | untagged A20 |
| 1068 | ip address 10.3.1.253 255.255.255.0 |
| 1069 | exit |
| 1070 | vlan 257 |
| 1071 | name "5000" |
| 1072 | untagged A1-A9 |
| 1073 | no ip address |
| 1074 | exit |
| 1075 | vlan 2491 |
| 1076 | name "5005" |
| 1077 | tagged A16 |
| 1078 | no ip address |
| 1079 | exit |
| 1080 | vlan 258 |
| 1081 | name "5187" |
| 1082 | untagged A10,A13 |
| 1083 | no ip address |
| 1084 | exit |
| 1085 | no web-management |
| 1086 | openflow |
| 1087 | vlan 2491 |
| 1088 | enable |
| 1089 | controller "tcp:10.3.1.7:6633" fail-secure on |
| 1090 | exit |
| 1091 | exit |
| 1092 | snmp-server community "xxx" unrestricted |
| 1093 | aaa authentication ssh login public-key |
| 1094 | aaa authentication ssh enable public-key |
| 1095 | management-vlan 10 |
| 1096 | no autorun |
| 1097 | no dhcp config-file-update |
| 1098 | no dhcp image-file-update |
| 1099 | password xxx |
| 1100 | password xxx |
| 1101 | |
| 1102 | HP-E5406zl# |
| 1103 | HP-E5406zl# exit |
| 1104 | HP-E5406zl> exi |
| 1105 | Do you want to log out [y/n]? y |
| 1106 | Connection closed by foreign host. |
| 1107 | [lnevers@boss ~]$ |
| 1108 | }}} |
| 1109 | |
| 1110 | Access the FOAM VM and gather information for version |
| 1111 | {{{ |
| 1112 | LNM:~$ ssh lnevers@foam.geni.uchicago.edu |
| 1113 | |
| 1114 | sudo foamctl admin:get-version --passwd-file=/etc/foam.passwd |
| 1115 | |
| 1116 | }}} |
| 1117 | Check FOAM configuration for site.admin.email, geni.site-tag, email.from settings: |
| 1118 | {{{ |
| 1119 | foamctl config:get-value --key="site.admin.email" --passwd-file=/etc/foam.passwd |
| 1120 | |
| 1121 | foamctl config:get-value --key="geni.site-tag" --passwd-file=/etc/foam.passwd |
| 1122 | |
| 1123 | foamctl config:get-value --key="email.from" --passwd-file=/etc/foam.passwd |
| 1124 | |
| 1125 | # check if FOAM auto-approve is on. Value 2 = auto-approve is on. |
| 1126 | |
| 1127 | foamctl config:get-value --key="geni.approval.approve-on-creation" --passwd-file=/etc/foam.passwd |
| 1128 | |
| 1129 | }}} |
| 1130 | |
| 1131 | Show FOAM slivers details: |
| 1132 | |
| 1133 | {{{ |
| 1134 | foamctl geni:list-slivers --passwd-file=/etc/foam.passwd |
| 1135 | |
| 1136 | }}} |
| 1137 | Access the FlowVisor VM and gather version information: |
| 1138 | {{{ |
| 1139 | |
| 1140 | ssh lnevers@flowvisor.geni.uchicago.edu |
| 1141 | }}} |
| 1142 | Check the !FlowVisor version, list of devices, get details for a device, list of active slices, and details for one of the slices: |
| 1143 | {{{ |
| 1144 | |
| 1145 | fvctl --passwd-file=/etc/flowvisor.passwd ping hello |
| 1146 | |
| 1147 | # Devices |
| 1148 | fvctl --passwd-file=/etc/flowvisor.passwd listDevices |
| 1149 | |
| 1150 | fvctl --passwd-file=/etc/flowvisor.passwd getDeviceInfo 06:d6:6c:3b:e5:68:00:00 |
| 1151 | |
| 1152 | #Slices |
| 1153 | fvctl --passwd-file=/etc/flowvisor.passwd listSlices |
| 1154 | |
| 1155 | fvctl --passwd-file=/etc/flowvisor.passwd getSliceInfo 5c956f94-5e05-40b5-948f-34d0149d9182 |
| 1156 | |
| 1157 | }}} |
| 1158 | |
| 1159 | Check the FlowVisor setting: |
| 1160 | {{{ |
| 1161 | fvctl --passwd-file=/etc/flowvisor.passwd dumpConfig /tmp/flowvisor-config |
| 1162 | more /tmp/flowvisor-config |
| 1163 | |
| 1164 | }}} |