Professional Documents
Culture Documents
WAAS Express Lab Guide - J - 0.3
WAAS Express Lab Guide - J - 0.3
Complete this lab activity to practice what you learned in the related lesson.
Activity Objective
In this activity, you will install and configure WAAS Express and monitor traffic flows. After
completing this activity, you will be able to meet these objectives:
Configure WAAS Express from the CLI and Central Manager
Use the WAAS Express specific CLI and Central Manager instrumentation to measure WAAS
optimized traffic between the branch and data center
Configure the WAAS Express Application Traffic Policies from the CLI and verify the
configuration of the default policy
Visual Objective
The figure illustrates what you will accomplish in this activity. Pod 番号=3=X
Required Resources
These are the resources and equipment required to complete this activity:
One WAAS Central Manager, located in the Data-Canter LAN.
One WAAS Accelerator, located in the Data-Canter LAN.
One ISR G2 router, located in the Branch Office LAN, at the WAN edge.
Command List
The table describes the commands used in this lab.
Command Description
crypto pki trustpoint To declare the trustpoint that your router should use
debug ip http client all To enable debugging output for the HTTP client
logging console priority debug To set the console logging level to ‘debug’
CM の設定
Notice that the firebug window appears at the bottom of the page. Please confirm that it is enabled
for all and that the Net tab is selected.
Bag Attributes
localKeyID: 8D AB 61 85 7B 95 FC 4C 34 FD AC DC A8 F2 B1 A4 80 74 70
9B
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2000021192 (0x7735e6c8)
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=US, ST=California, L=San Jose, OU=CNBU, O=Cisco
Systems, Inc,
CN=Central_Manager
Validity
Not Before: Nov 13 06:56:02 2009 GMT
Not After : Nov 12 06:56:02 2014 GMT
Subject: C=US, ST=California, L=San Jose, OU=CNBU, O=Cisco
Systems, Inc,
CN=Central_Manager
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (1024 bit)
Modulus (1024 bit):
00:b4:5e:3a:77:52:5a:5d:d3:35:36:fa:2a:98:c7:
e5:cb:19:18:b4:30:9d:50:49:55:7e:99:18:0b:67:
c2:53:6f:01:12:9f:b0:e3:20:1a:c4:3f:e5:dd:6a:
34:7a:79:02:40:5e:77:e4:cb:f4:71:2a:64:d0:76:
05:1b:c0:48:6e:25:ae:fe:4e:23:b4:a4:f8:aa:1d:
39:e5:ac:3a:6a:81:aa:cd:c7:83:52:19:01:90:e7:
7d:99:37:6c:6b:67:7b:5f:e4:e3:46:18:20:ce:a2:
5f:d2:a1:6e:c4:20:2f:63:61:44:e9:c4:ac:05:2c:
ee:62:2d:ba:56:f5:d4:44:97
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
97:94:c6:57:c6:f0:dc:2f:5b:33:b7:80:ed:61:a9:4f:e8:0c:
b6:ca:41:53:24:25:07:5c:d7:c3:22:ca:6c:92:7e:dd:f4:44:
5a:e1:0a:e5:03:c9:24:e8:c7:5d:ad:19:6a:59:d4:9d:64:20:
61:a8:35:a9:fb:d4:1b:3f:4a:0e:71:27:b3:5a:61:3d:0f:68:
fa:4e:01:ee:0d:3f:1a:ed:0b:41:e2:6b:37:f8:d9:46:47:b8:
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
このステップでは、あなたはルータ上に自己証明証明書を作成します。実際の利
Step 18
用シーンでは、ルータはすでに設定されている場合、このように証明書を作成する必要は
ありません。この Lab では新しく証明書を作成します。もし既存の証明書がある場合はあ
なたが作成した新しい証明書へ置き換えてください。
podx-br-rtr(config)# crypto pki trustpoint LOCAL
podx-br-rtr(ca-trustpoint)# enrollment selfsigned
podx-br-rtr(ca-trustpoint)# exit
podx-br-rtr(config)# crypto pki enroll LOCAL
The router has already generated a Self Signed Certificate for
trustpoint TP-self-signed-4091792650.
If you continue the existing trustpoint and Self Signed Certificate will be
deleted.
podx-br-rtr(config)#
podx-br-rtr#
podx-br-rtr#
podx-br-rtr# config t
podx-br-rtr(config)# interface gig0/1.200
podx-br-rtr(config-if)# waas enable
Nov 15 05:20:26.772: %WAAS-6-WAAS_ENABLED: WAAS is enabled on
interface GigabitEthernet0/1.200
podx-br-rtr#
Step 30 show run interface と show ip interface コマンドを用いて WAAS Express feature
が有効になっていることを確認します。
Username: admin
Password: default
ote While a default configuration can be applied, as shown below, you will not accept this option, as it
does not match the settings desired for the lab. For example, the default settings would enable
DHCP. Enter n to reject the default settings and enter the setup dialogue.
NO-HOSTNAME#setup
ote Any time you see an x listed below, use your pod number to replace the x.
┌──────────────────────────────────────┐
│ │
│ │
│ Want to run Diagnostics(y/n)? [n] │
│ │
│ │
│ │
Step 11 時刻の設定をコンフィグします。
podX-DC-WAE# config
podX-DC-WAE(config)# clock summer PDT recurring
2 sun mar 02:00 1 sun nov 02:00 60
podX-DC-WAE(config)# exit
Step 12 NTP を使って時刻の同期を行います。
podX-CM-WAE# ntp 10.10.100.101
Step time server 10.10.100.101 with offset 2.409635 sec
Sun Mar 15 13:52:48 pst 2009
Step 13 Cisco WAAS CM に登録されたデバイスを確認します。このステップを完成させ
るには以下のような出力を確認してください。
podx-DC-WAE#sh cms info
Device registration information :
Device Id = 665
Device registered as = WAAS Application Engine
Current WAAS Central Manager = 10.10.100.24x
Registered with WAAS Central Manager = 10.10.100.24x
Status = Online
Time of last config-sync = Fri Dec 17 02:06:05 2010
<...>
podx-br-rtr#
Activity Objective
In this activity, you will monitor and troubleshoot your WAAS Express installation. After
completing this activity, you will be able to meet these objectives:
Monitor WAAS Express using the CLI
Perform troubleshooting of WAAS Express using the CLI
Trigger and verify WAAS Express alarms through the CLI and WAAS Central Manager GUI
Visual Objective
© 2008 Cisco Systems, Inc. All rights reserved. WAAS NPI v4.1
-#-3
Command List
The table describes the commands used in this lab.
Command Description
show waas statistics global To display router level WAAS Express data volume and
connection statistics
show waas statistics dre To display DRE compression statistics for optimized
connections
show waas connection detail To display detailed statistics for optimized connections
show waas connection closed To display statistics for closed optimized connections
brief
show waas statistics pass- To display statistics for connections handled as pass-
through through
Connections
Total: 367542
Active: 250
Step 46 WAAS Express dre compression statistics を確認します。 WAAS Express ルータ上
から DRE 圧縮に対する encode と decode の統計情報を見るため に show waas
statistics dre を入力します。
podx-br-rtr# show waas statistics dre
DRE Status: Enabled
Cache
Cache Status: Ready
Oldest data age: 03:18:06
Total data storage size: 1468006400
Total index size: 11513600
WaitQ size: 0
WaitQ in storage: 0
Connections
Total: 367514
Active: 250
Encode Statistics
Dre msgs: 0
Bytes in: 0
Bytes out: 0
Bypass bytes: 52482344551
Compression gain: 0%
Average latency: 2 usec
Decode Statistics
Dre msgs: 99744250
Nacks generated: 7
Bytes in: 34373270364
Bytes out: 101484725304
Bypass bytes: 573087
Compression gain: 66%
Average latency: 108 usec
Step 47 WAAS Express detailed connection statistics を確認します。 WAAS Express ルータ
上から圧縮に対する encode と decode の統計情報と同様に connection identification
と policy information を見るために show waas connection detailed コマンドを入力
します。
podx-br-rtr# show waas connection detailed
Encode stats
Bytes in 0
Bytes out 0
Bypass bytes 181
Compression gain 0%
Avg Latency in Cef 0 usec
Avg Latency in Proc 3 usec
Decode stats
Encode stats
Bytes in 0
Bytes out 0
Bypass bytes 138
Compression gain 0%
Avg latency 0 usec
Decode stats
Bytes in 2808
Bytes out 2289960
Bypass bytes 0
Compression gain 99%
Avg latency 1994 usec
Connection Status:
WAN-LAN Status:
Pending Data Read : 278
LAN window event pending (70592)
Last read notification (278) received 1448 ms ago
Last write attempted 1888 ms ago
Last window notification received 1428 ms ago
Last attempted len : 26620
Last error : 11
Last bytes accepted: -1
<==========================
LAN-WAN Status:
Pending Data Read : 0
Last read notification (138) received 20488 ms ago
Last write attempted 2188 ms ago
Last window notification received 3524 ms ago
Last attempted len : 55
Last error : 0
Last bytes accepted: 55
--More--
下記の表では、コマンド出力結果に関する各カウントの説明が記載されています。
Command Description
Step 50 Central Manager GUI へ接続します. Data Center XP PC から Central Manager GUI
へアクセスします。 Data Center XP PC アイコンの隣にある緑色の Desktop を
クリックして Data Center XP PC へ接続してください。
Step 51 Central Manager GUI へログインします. このクリデンシャルは (admin/default)で
す.
Step 52 Dashboard ページ上で, WAAS Express が動作するルータに対して
cms_offline_state アラームがあるか確認します。このアラームは Critical となり
ます。
Step 3 ブランチオフィスルータのコンソール Port へ接続します。ブランチオフィス
ルータアイコンの隣にある グリーンの Console をクリックします。
Step 4 ブランチオフィスルータへログインします。このクリデンシャルは(admin/cisco)
です。
Step 53 以下のコマンドで WAAS Express の CPU threshold 値をゼロに設定します。
pod6-br-rtr# conf t
Enter configuration commands, one per line. End with CNTL/Z.
pod6-br-rtr(config)# parameter-map type waas waas_global
pod6-br-rtr(config-profile)# cpu-threshold 0
pod6-br-rtr(config-profile)#
Step 54 WAAS Express ルータ上で show waas alarms を用いて High CPU が “on” になっ
ていることを確認します。
podX-br-rtr# sh waas alarm
WAAS status: enabled
Alarms
Connection limit exceeded: off
Too many peers discovered: off
WAAS license expired: off
WAAS license revoked: off
WAAS license deleted: off
High CPU: on
podX-br-rtr#