| 1 | = GR-ADM-2: Rack Administrator Access Test = |
| 2 | |
| 3 | This page captures status for the test case GR-ADM-2. For additional information see the [wiki:GENIRacksHome/GRAMRacks/AcceptanceTestStatusMay2013 Acceptance Test Status - May 2013] page overall status, or the [wiki:GENIRacksHome/AcceptanceTests/GRAMAcceptanceTestsPlan GRAM Acceptance Test Plan] for details about the planned evaluation. |
| 4 | |
| 5 | ''Last Update: 2013/05/14" |
| 6 | |
| 7 | || '''Step''' || '''State'''||''' Notes ''' || '''Tickets''' || |
| 8 | || Step 1 ||[[span(Pass, style=background-color: green )]]|| || || |
| 9 | || Step 2 ||[[span(Pass, style=background-color: green )]]|| || |
| 10 | || Step 3 ||[[span(Fail, style=background-color: red)]]||IPKVM powered off and disconnected ||#65 || |
| 11 | |
| 12 | |
| 13 | [[BR]] |
| 14 | || '''State Legend''' || '''Description''' || |
| 15 | ||[[span(Pass, style=background-color: green )]] || Test completed and met all criteria || |
| 16 | ||[[span(Pass: most criteria, style=background-color: #98FB98)]]|| Test completed and met most criteria. Exceptions documented || |
| 17 | ||[[span(Fail, style=background-color: red)]] || Test completed and failed to meet criteria. || |
| 18 | ||[[span(Complete, style=background-color: yellow)]] || Test completed but will require re-execution due to expected changes || |
| 19 | ||[[span(Blocked, style=background-color: orange)]] || Blocked by ticketed issue(s). || |
| 20 | ||[[span(In Progress, style=background-color: #63B8FF)]]|| Currently under test. || |
| 21 | ||[[span(Not Planned)]] || This area is not part of initial evaluation || |
| 22 | |
| 23 | = Test Plan Steps = |
| 24 | |
| 25 | == Step 1: For each type of rack infrastructure node verify features == |
| 26 | For each type of rack infrastructure node, including VM server hosts and any VMs running infrastructure support services, use a site administrator account to test: |
| 27 | * Login to the node using public-key SSH. |
| 28 | * Verify that you cannot login to the node using password-based SSH, nor via any unencrypted login protocol. |
| 29 | * When logged in, run a command via sudo to verify root privileges. |
| 30 | |
| 31 | === Control Node === |
| 32 | |
| 33 | Requested Administrative account and provided SSH Public keys. Once the account was created, logged in and verified sudo access: |
| 34 | {{{ |
| 35 | $ ssh 128.89.91.170 |
| 36 | Welcome to Ubuntu 12.04.2 LTS (GNU/Linux 3.5.0-23-generic x86_64) |
| 37 | |
| 38 | * Documentation: https://help.ubuntu.com/ |
| 39 | |
| 40 | *** System restart required *** |
| 41 | Last login: Tue May 14 09:01:27 2013 from dhcp89-073-116.bbn.com |
| 42 | lnevers@boscontroller:~$ sudo whoami |
| 43 | root |
| 44 | lnevers@boscontroller:~$ |
| 45 | }}} |
| 46 | |
| 47 | === Compute Nodes VM servers === |
| 48 | |
| 49 | Logged in to each of the 3 VM servers and verified access. Compute Node 1: |
| 50 | |
| 51 | {{{ |
| 52 | |
| 53 | $ ssh 128.89.91.171 |
| 54 | Welcome to Ubuntu 12.04.2 LTS (GNU/Linux 3.5.0-23-generic x86_64) |
| 55 | |
| 56 | * Documentation: https://help.ubuntu.com/ |
| 57 | |
| 58 | 1 package can be updated. |
| 59 | 0 updates are security updates. |
| 60 | |
| 61 | *** System restart required *** |
| 62 | |
| 63 | The programs included with the Ubuntu system are free software; |
| 64 | the exact distribution terms for each program are described in the |
| 65 | individual files in /usr/share/doc/*/copyright. |
| 66 | |
| 67 | Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by |
| 68 | applicable law. |
| 69 | |
| 70 | lnevers@boscompute1:~$ sudo whoami |
| 71 | root |
| 72 | lnevers@boscompute1:~$ |
| 73 | }}} |
| 74 | |
| 75 | Compute Node 2: |
| 76 | {{{ |
| 77 | $ ssh 128.89.91.172 |
| 78 | Welcome to Ubuntu 12.04.2 LTS (GNU/Linux 3.5.0-23-generic x86_64) |
| 79 | |
| 80 | * Documentation: https://help.ubuntu.com/ |
| 81 | |
| 82 | 1 package can be updated. |
| 83 | 0 updates are security updates. |
| 84 | |
| 85 | *** System restart required *** |
| 86 | |
| 87 | The programs included with the Ubuntu system are free software; |
| 88 | the exact distribution terms for each program are described in the |
| 89 | individual files in /usr/share/doc/*/copyright. |
| 90 | |
| 91 | Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by |
| 92 | applicable law. |
| 93 | |
| 94 | lnevers@boscompute2:~$ sudo whoami |
| 95 | root |
| 96 | lnevers@boscompute2:~$ |
| 97 | }}} |
| 98 | |
| 99 | Compute node 3: |
| 100 | {{{ |
| 101 | $ ssh 128.89.91.174 |
| 102 | Welcome to Ubuntu 12.04.2 LTS (GNU/Linux 3.5.0-23-generic x86_64) |
| 103 | |
| 104 | * Documentation: https://help.ubuntu.com/ |
| 105 | |
| 106 | *** System restart required *** |
| 107 | |
| 108 | The programs included with the Ubuntu system are free software; |
| 109 | the exact distribution terms for each program are described in the |
| 110 | individual files in /usr/share/doc/*/copyright. |
| 111 | |
| 112 | Ubuntu comes with ABSOLUTELY NO WARRANTY, to the extent permitted by |
| 113 | applicable law. |
| 114 | |
| 115 | lnevers@boscompute4:~$ sudo whoami |
| 116 | root |
| 117 | lnevers@boscompute4:~$ |
| 118 | }}} |
| 119 | == Step 2: For each rack infrastructure device verify features == |
| 120 | For each rack infrastructure device (switches, remote PDUs if any), use a site administrator account to test: |
| 121 | * Login via SSH. |
| 122 | * Login via a serial console (if the device has one). |
| 123 | * Verify that you cannot login to the device via an unencrypted login protocol. |
| 124 | * Use the "enable" command or equivalent to verify privileged access. |
| 125 | |
| 126 | First connected to host desktop.gpolab.bbn.com which has access to console ports for routers: |
| 127 | {{{ |
| 128 | LNM:~$ ssh desktop.gpolab.bbn.com |
| 129 | Last login: Tue May 14 10:44:21 2013 from dhcp89-073-116.bbn.com |
| 130 | Welcome to coruscant.gpolab.bbn.com. |
| 131 | |
| 132 | This host is managed by GENI GPO Ops. |
| 133 | |
| 134 | This host's configuration files are maintained using the Puppet |
| 135 | automated configuration utility. Manual system-level changes may |
| 136 | be overwritten. Please make all system-level changes using Puppet. |
| 137 | |
| 138 | For configuration requests, contact gpo-infra@geni.net. |
| 139 | [lnevers@coruscant ~]$ |
| 140 | }}} |
| 141 | Then connected to router console ports for Control Network. First login to desktop.gpolab.bbn.com and then connect to console via screen. |
| 142 | |
| 143 | '' Note: Cable must be connected to console port to get access to Control Router Console via screen'' |
| 144 | |
| 145 | {{{ |
| 146 | $ ssh desktop.gpolab.bbn.com |
| 147 | [lnevers@coruscant ~]$ screen /dev/ttyS4 |
| 148 | <...> |
| 149 | Username: gpo |
| 150 | Password: |
| 151 | bos-router1> |
| 152 | bos-router1#show running-config |
| 153 | Building configuration... |
| 154 | |
| 155 | Current configuration : 6950 bytes |
| 156 | ! |
| 157 | ! Last configuration change at 19:02:21 UTC Tue Apr 9 2013 by gpo |
| 158 | ! NVRAM config last updated at 19:02:27 UTC Tue Apr 9 2013 by gpo |
| 159 | ! NVRAM config last updated at 19:02:27 UTC Tue Apr 9 2013 by gpo |
| 160 | version 15.1 |
| 161 | service timestamps debug datetime msec |
| 162 | service timestamps log datetime msec |
| 163 | service password-encryption |
| 164 | ! |
| 165 | hostname bos-router1 |
| 166 | ! |
| 167 | boot-start-marker |
| 168 | boot-end-marker |
| 169 | ! |
| 170 | logging buffered 51200 warnings |
| 171 | ! |
| 172 | aaa new-model |
| 173 | ! |
| 174 | aaa authentication login default local |
| 175 | ! |
| 176 | aaa session-id common |
| 177 | ! |
| 178 | no ipv6 cef |
| 179 | ip source-route |
| 180 | ip cef |
| 181 | ! |
| 182 | ip domain name cities.gpolab.bbn.com |
| 183 | ip name-server 128.89.91.10 |
| 184 | multilink bundle-name authenticated |
| 185 | ! |
| 186 | crypto pki token default removal timeout 0 |
| 187 | ! |
| 188 | crypto pki trustpoint TP-self-signed-1265093406 |
| 189 | enrollment selfsigned |
| 190 | subject-name cn=IOS-Self-Signed-Certificate-1265093406 |
| 191 | revocation-check none |
| 192 | rsakeypair TP-self-signed-1265093406 |
| 193 | ! |
| 194 | crypto pki |
| 195 | <.....> |
| 196 | vtp mode transparent |
| 197 | username xxx XXXX |
| 198 | ! |
| 199 | vlan 820 |
| 200 | name IP:rack-bos-ctrl |
| 201 | ! |
| 202 | vlan 824 |
| 203 | name IP:rack-bos-data |
| 204 | ! |
| 205 | vlan 2005 |
| 206 | name VLAN2006 |
| 207 | ! |
| 208 | interface Embedded-Service-Engine0/0 |
| 209 | no ip address |
| 210 | shutdown |
| 211 | ! |
| 212 | interface GigabitEthernet0/0 |
| 213 | description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-GE 0/0$ |
| 214 | ip address 128.89.91.150 255.255.255.252 |
| 215 | duplex auto |
| 216 | speed auto |
| 217 | ! |
| 218 | interface GigabitEthernet0/1 |
| 219 | no ip address |
| 220 | ip broadcast-address 128.89.91.191 |
| 221 | duplex auto |
| 222 | speed auto |
| 223 | ! |
| 224 | interface GigabitEthernet0/1/0 |
| 225 | switchport access vlan 820 |
| 226 | no ip address |
| 227 | ! |
| 228 | interface GigabitEthernet0/1/1 |
| 229 | switchport access vlan 820 |
| 230 | no ip address |
| 231 | ! |
| 232 | interface GigabitEthernet0/1/2 |
| 233 | switchport access vlan 820 |
| 234 | no ip address |
| 235 | ! |
| 236 | interface GigabitEthernet0/1/3 |
| 237 | switchport access vlan 820 |
| 238 | no ip address |
| 239 | ! |
| 240 | interface GigabitEthernet0/1/4 |
| 241 | switchport mode trunk |
| 242 | no ip address |
| 243 | ! |
| 244 | interface GigabitEthernet0/1/5 |
| 245 | switchport access vlan 820 |
| 246 | no ip address |
| 247 | ! |
| 248 | interface GigabitEthernet0/1/6 |
| 249 | switchport access vlan 820 |
| 250 | no ip address |
| 251 | ! |
| 252 | interface GigabitEthernet0/1/7 |
| 253 | switchport access vlan 820 |
| 254 | no ip address |
| 255 | ! |
| 256 | interface GigabitEthernet0/3/0 |
| 257 | switchport mode trunk |
| 258 | no ip address |
| 259 | ! |
| 260 | interface GigabitEthernet0/3/1 |
| 261 | switchport mode trunk |
| 262 | no ip address |
| 263 | ! |
| 264 | interface GigabitEthernet0/3/2 |
| 265 | switchport access vlan 820 |
| 266 | no ip address |
| 267 | ! |
| 268 | interface GigabitEthernet0/3/3 |
| 269 | switchport mode trunk |
| 270 | no ip address |
| 271 | ! |
| 272 | interface GigabitEthernet0/3/4 |
| 273 | switchport access vlan 820 |
| 274 | no ip address |
| 275 | ! |
| 276 | interface GigabitEthernet0/3/5 |
| 277 | switchport access vlan 820 |
| 278 | no ip address |
| 279 | ! |
| 280 | interface GigabitEthernet0/3/6 |
| 281 | switchport access vlan 820 |
| 282 | no ip address |
| 283 | ! |
| 284 | interface GigabitEthernet0/3/7 |
| 285 | switchport access vlan 820 |
| 286 | no ip address |
| 287 | ! |
| 288 | interface Vlan1 |
| 289 | no ip address |
| 290 | shutdown |
| 291 | ! |
| 292 | interface Vlan820 |
| 293 | ip address 128.89.91.162 255.255.255.224 |
| 294 | ! |
| 295 | interface Vlan824 |
| 296 | ip address 192.1.243.17 255.255.255.240 |
| 297 | shutdown |
| 298 | ! |
| 299 | ip default-gateway 128.89.91.149 |
| 300 | ip forward-protocol nd |
| 301 | ! |
| 302 | no ip http server |
| 303 | ip http access-class 23 |
| 304 | ip http authentication local |
| 305 | no ip http secure-server |
| 306 | ip http timeout-policy idle 60 life 86400 requests 10000 |
| 307 | ! |
| 308 | ip route 0.0.0.0 0.0.0.0 192.1.249.1 |
| 309 | ip route 0.0.0.0 0.0.0.0 128.89.91.149 |
| 310 | ! |
| 311 | logging 192.1.243.4 |
| 312 | access-list 3 remark monitoring |
| 313 | access-list 3 permit 192.1.243.4 |
| 314 | access-list 23 remark admin |
| 315 | access-list 23 permit 192.1.249.10 |
| 316 | access-list 23 permit 192.1.243.4 |
| 317 | ! |
| 318 | snmp-server community XXX RO 3 |
| 319 | ! |
| 320 | |
| 321 | bos-router1#show vlan-switch |
| 322 | |
| 323 | VLAN Name Status Ports |
| 324 | ---- -------------------------------- --------- ------------------------------- |
| 325 | 1 default active |
| 326 | 820 IP:rack-bos-ctrl active Gi0/1/0, Gi0/1/1, Gi0/1/2 |
| 327 | Gi0/1/3, Gi0/1/5, Gi0/1/6 |
| 328 | Gi0/1/7, Gi0/3/2, Gi0/3/4 |
| 329 | Gi0/3/5, Gi0/3/6, Gi0/3/7 |
| 330 | 824 IP:rack-bos-data active |
| 331 | 1002 fddi-default act/unsup |
| 332 | 1003 token-ring-default act/unsup |
| 333 | 1004 fddinet-default act/unsup |
| 334 | 1005 trnet-default act/unsup |
| 335 | 2005 VLAN2006 active |
| 336 | |
| 337 | VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2 |
| 338 | ---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------ |
| 339 | 1 enet 100001 1500 - - - - - 1002 1003 |
| 340 | 820 enet 100820 1500 - - - - - 0 0 |
| 341 | 824 enet 100824 1500 - - - - - 0 0 |
| 342 | 1002 fddi 101002 1500 - - - - - 1 1003 |
| 343 | 1003 tr 101003 1500 1005 0 - - srb 1 1002 |
| 344 | 1004 fdnet 101004 1500 - - 1 ibm - 0 0 |
| 345 | 1005 trnet 101005 1500 - - 1 ibm - 0 0 |
| 346 | |
| 347 | VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2 |
| 348 | ---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------ |
| 349 | 2005 enet 102005 1500 - - - - - 0 0 |
| 350 | |
| 351 | }}} |
| 352 | |
| 353 | Then connected to router console ports for Dataplane Network: |
| 354 | {{{ |
| 355 | $ ssh desktop.gpolab.bbn.com |
| 356 | [lnevers@coruscant ~]$ screen /dev/ttyS4 |
| 357 | Username: |
| 358 | Password: |
| 359 | |
| 360 | bosswitch> ena |
| 361 | bosswitch# show openflow version |
| 362 | |
| 363 | Openflow Version |
| 364 | |
| 365 | HP-Labs Openflow Implementation for 5400zl/3500yl switches |
| 366 | Version 2.02w |
| 367 | Jean Tourrilhes & Praveen Yalagandula, HP-Labs |
| 368 | Based on ProCurve firmware for 5400zl/3500yl switches |
| 369 | Version K.14.83o |
| 370 | (Don't ask ProCurve for support or help) |
| 371 | Based on Open vSwitch Reference Source code |
| 372 | Version 1.0.0 |
| 373 | |
| 374 | bosswitch# show running-config |
| 375 | Running configuration: |
| 376 | |
| 377 | ; J9452A Configuration Editor; Created on release #K.14.83o |
| 378 | |
| 379 | hostname "bosswitch" |
| 380 | ip access-list standard "1" |
| 381 | 10 remark "admin" |
| 382 | 10 permit 192.1.249.10 0.0.0.0 |
| 383 | 20 permit 192.1.243.4 0.0.0.0 |
| 384 | exit |
| 385 | module 2 type J94yyA |
| 386 | module 3 type J94zzA |
| 387 | module 5 type J94wwA |
| 388 | module 6 type J94wwA |
| 389 | no stack |
| 390 | interface 2 |
| 391 | disable |
| 392 | exit |
| 393 | interface 3 |
| 394 | disable |
| 395 | exit |
| 396 | interface 4 |
| 397 | disable |
| 398 | exit |
| 399 | interface 5 |
| 400 | disable |
| 401 | exit |
| 402 | interface 6 |
| 403 | disable |
| 404 | exit |
| 405 | interface 7 |
| 406 | disable |
| 407 | exit |
| 408 | interface 10 |
| 409 | disable |
| 410 | exit |
| 411 | interface 11 |
| 412 | disable |
| 413 | exit |
| 414 | interface 12 |
| 415 | disable |
| 416 | exit |
| 417 | interface 13 |
| 418 | disable |
| 419 | exit |
| 420 | interface 14 |
| 421 | disable |
| 422 | exit |
| 423 | interface 15 |
| 424 | disable |
| 425 | exit |
| 426 | interface 17 |
| 427 | disable |
| 428 | exit |
| 429 | interface 18 |
| 430 | disable |
| 431 | exit |
| 432 | interface 19 |
| 433 | disable |
| 434 | exit |
| 435 | interface 20 |
| 436 | disable |
| 437 | exit |
| 438 | interface 21 |
| 439 | disable |
| 440 | exit |
| 441 | interface 22 |
| 442 | disable |
| 443 | exit |
| 444 | interface 23 |
| 445 | disable |
| 446 | exit |
| 447 | interface 25 |
| 448 | disable |
| 449 | exit |
| 450 | interface 26 |
| 451 | disable |
| 452 | exit |
| 453 | interface 27 |
| 454 | disable |
| 455 | exit |
| 456 | interface 28 |
| 457 | disable |
| 458 | exit |
| 459 | interface 29 |
| 460 | disable |
| 461 | exit |
| 462 | interface 30 |
| 463 | disable |
| 464 | exit |
| 465 | interface 31 |
| 466 | disable |
| 467 | exit |
| 468 | interface 32 |
| 469 | disable |
| 470 | exit |
| 471 | interface 33 |
| 472 | disable |
| 473 | exit |
| 474 | interface 35 |
| 475 | disable |
| 476 | exit |
| 477 | interface 37 |
| 478 | disable |
| 479 | exit |
| 480 | interface 38 |
| 481 | disable |
| 482 | exit |
| 483 | interface 39 |
| 484 | disable |
| 485 | exit |
| 486 | interface 40 |
| 487 | disable |
| 488 | exit |
| 489 | interface 41 |
| 490 | disable |
| 491 | exit |
| 492 | interface 42 |
| 493 | disable |
| 494 | exit |
| 495 | interface 43 |
| 496 | disable |
| 497 | exit |
| 498 | interface 44 |
| 499 | disable |
| 500 | exit |
| 501 | interface 45 |
| 502 | disable |
| 503 | exit |
| 504 | interface 47 |
| 505 | disable |
| 506 | exit |
| 507 | ip default-gateway 128.89.91.162 |
| 508 | vlan 1 |
| 509 | name "DEFAULT_VLAN" |
| 510 | untagged 2-8,10-45,47,49-50,51-52 |
| 511 | no untagged 1,9,46,48 |
| 512 | no ip address |
| 513 | exit |
| 514 | vlan 820 |
| 515 | name "IP:rack-bos-ctrl" |
| 516 | untagged 48 |
| 517 | ip address 128.89.91.161 255.255.255.224 |
| 518 | exit |
| 519 | vlan 1403 |
| 520 | name "IP:exp-euca-bos-priv" |
| 521 | untagged 1,9,46 |
| 522 | no ip address |
| 523 | exit |
| 524 | vlan 1000 |
| 525 | name "vlan1000" |
| 526 | tagged 8,16,24,34 |
| 527 | no ip address |
| 528 | exit |
| 529 | vlan 1001 |
| 530 | name "vlan1001" |
| 531 | tagged 8,16,24,34 |
| 532 | no ip address |
| 533 | exit |
| 534 | vlan 1002 |
| 535 | name "vlan1002" |
| 536 | tagged 8,16,24,34 |
| 537 | no ip address |
| 538 | exit |
| 539 | vlan 1003 |
| 540 | name "vlan1003" |
| 541 | tagged 8,16,24,34 |
| 542 | no ip address |
| 543 | exit |
| 544 | vlan 1004 |
| 545 | name "vlan1004" |
| 546 | tagged 8,16,24,34 |
| 547 | no ip address |
| 548 | exit |
| 549 | vlan 1005 |
| 550 | name "vlan1005" |
| 551 | tagged 8,16,24,34 |
| 552 | no ip address |
| 553 | exit |
| 554 | vlan 1006 |
| 555 | name "vlan1006" |
| 556 | tagged 8,16,24,34 |
| 557 | no ip address |
| 558 | exit |
| 559 | vlan 1007 |
| 560 | name "vlan1007" |
| 561 | tagged 8,16,24,34 |
| 562 | no ip address |
| 563 | exit |
| 564 | vlan 1008 |
| 565 | name "vlan1008" |
| 566 | tagged 8,16,24,34 |
| 567 | no ip address |
| 568 | exit |
| 569 | vlan 1009 |
| 570 | name "vlan1009" |
| 571 | tagged 8,16,24,34 |
| 572 | no ip address |
| 573 | exit |
| 574 | vlan 1010 |
| 575 | name "vlan1010" |
| 576 | tagged 8,16,24,34 |
| 577 | no ip address |
| 578 | exit |
| 579 | logging 192.1.243.4 |
| 580 | logging facility local7 |
| 581 | exit |
| 582 | logging 192.1.243.4 |
| 583 | logging facility local7 |
| 584 | timesync sntp |
| 585 | sntp unicast |
| 586 | sntp server priority 1 192.1.243.4 3 |
| 587 | no telnet-server |
| 588 | ip authorized-managers 192.1.249.10 255.255.255.255 access XXX access-method |
| 589 | ssh |
| 590 | ip authorized-managers 192.1.243.4 255.255.255.255 access XXX access-method |
| 591 | ssh |
| 592 | ip authorized-managers 192.1.243.4 255.255.255.255 access XXX access-method |
| 593 | snmp |
| 594 | ip ssh filetransfer |
| 595 | snmp-server community "XXX" XXX |
| 596 | oobm |
| 597 | ip address dhcp-bootp |
| 598 | exit |
| 599 | no tftp client |
| 600 | no tftp server |
| 601 | no autorun |
| 602 | password XXX |
| 603 | |
| 604 | |
| 605 | bosswitch# show vlans |
| 606 | Status and Counters - VLAN Information |
| 607 | |
| 608 | Maximum VLANs to support : 256 |
| 609 | Primary VLAN : DEFAULT_VLAN |
| 610 | Management VLAN : |
| 611 | |
| 612 | VLAN ID Name | Status Voice Jumbo |
| 613 | ------- -------------------- + ---------- ----- ----- |
| 614 | 1 DEFAULT_VLAN | Port-based No No |
| 615 | 820 IP:rack-bos-ctrl | Port-based No No |
| 616 | 1000 vlan1000 | Port-based No No |
| 617 | 1001 vlan1001 | Port-based No No |
| 618 | 1002 vlan1002 | Port-based No No |
| 619 | 1003 vlan1003 | Port-based No No |
| 620 | 1004 vlan1004 | Port-based No No |
| 621 | 1005 vlan1005 | Port-based No No |
| 622 | 1006 vlan1006 | Port-based No No |
| 623 | 1007 vlan1007 | Port-based No No |
| 624 | 1008 vlan1008 | Port-based No No |
| 625 | 1009 vlan1009 | Port-based No No |
| 626 | 1010 vlan1010 | Port-based No No |
| 627 | 1403 IP:exp-euca-bos-priv | Port-based No No |
| 628 | |
| 629 | |
| 630 | }}} |
| 631 | |
| 632 | |
| 633 | |
| 634 | |
| 635 | == Step 3. Verify GRAM remote console solution == |
| 636 | |
| 637 | Verify the GRAM remote console solution for rack hosts can be used to access the consoles all server hosts and experimental hosts: |
| 638 | * Login via SSH or other encrypted protocol. |
| 639 | * Verify that you cannot login via an unencrypted login protocol. |
| 640 | |
| 641 | |
| 642 | There is Direct Console access to each node via a local KVM switch. |
| 643 | |
| 644 | There is an IPKVM switch for remote access, but it is powered off, disconnected from the network and has not been configured for the GRAM rack networks. |
| 645 | |