AX Management

Section 2

1
Section objectives

Explore AX management access

Understand AX configuration components
Backup/restore AX configuration
Upgrade/downgrade AX
Understand VLAN on AX
Perform initial AX configuration

2
AX management access

CLI
Console (RS-232 connection / 9600, 8, N, 1)
Telnet (disabled by default)
SSHv2
Web
HTTP (configurable ports - disabled by default)
HTTPS (configurable ports)
Levels of CLI authentication
CLI: Login ID/Password and Enable ID/Password
Web: User roles (read-write / read-only)

3
AX configuration components

AX configuration components
Configuration file
(optional) aFleX files
(optional) PBSLB files
(optional) SSL certificates and keys
(optional) Geo-location files (option in GSLB and geo-location-based VIP access)

4
AX configuration backup and restore

AX full configuration backup

Full AX back up
WebUI: Configuration > System > Maintenance > Backup > System
CLI: AX(config)# backup system […]
AX full configuration restore
Full AX restore
WebUI: Configuration > System > Maintenance > Restore > System
CLI: AX(config)# restore […]

Note: Supported upload protocols: FTP, SCP, RCP, TFTP, and HTTPS (via
WebUI)

5
AX software location

AX software is stored on
Two disk partitions: primary and secondary
Second partition is designed for easy software rollback
Two Compact Flash partitions: primary and secondary
CF is designed for emergency recovery

Note: Each storage location has its own software and AX configuration

6
AX software upgrade options

Check the AX running partition

WebUI: Monitor > Overview > Summary > System Information
CLI: AX# show bootimage
Upgrade AX device’s other partition
WebUI: Configuration > System > Maintenance > Upgrade
CLI: AX(config)# upgrade […]
Copy running configuration to the other partition
CLI only: AX# write memory [primary|secondary]
Set boot source to the other partition
WebUI: Configuration > System > Settings > Boot
CLI: AX(config)# bootimage hd [primary|secondary]

7
AX initial configuration

Rollback to Factory configuration

CLI: AX(config)# system-reset
AX(config)# end
AX# reboot
First step configuration
Connect on the AX console (9600 baud - 8 bits – no parity - 1 stop bit)
Default user/password: admin/a10
Configure the management interface and its default gateway
Finish the AX configuration via CLI (ssh) or WebUI (https)

8
AX initial configuration example

AX login: admin
Password:
AX>en
Password:
AX#conf
AX(config)#interface management
AX(config-if:management)#ip address 172.31.31.11 /24
AX(config-if:management)#ip default-gateway 172.31.31.1
AX(config-if:management)#exit
AX(config)#exit

9
 Application Delivery Partitions (ADP)
What is ADP?
ADP is a virtualization of AX 64-bit physical
appliances for multi-tenancy support

A single AX appliance can host multiple ADPs

AX 1030/2500/2600 = 32 ADP partitions
AX 3030/3200-12/3400 = 64 ADP partitions
AX 5200 = 128 ADP partitions

Up to 128 partitions today

RBA - Role-based Administration Up to 1K partitions
(Thunder Series – High End Platforms

ADP is also called Layer 2/3 Virtualization

10
 Application Delivery Partitions (ADP)
What is ADP? (continued)
All ADPs run on the same
AX 64-bit physical platform
ACOS image (single image)

Each ADP have its own resources:

Administrative resources
Users, privileges, etc.
Application resources
Real servers, virtual servers, templates, etc.
Network resources
Network interfaces, VLANs,
static and dynamic routing, etc.

System resources (2.7.0 and above)

Memory, CPU, etc.

11
 ADP Configuration
Create a partition
v2.6.1:
AX(config)# partition <name> network-partition [id]

Note: ADP partition can be created only with a global admin account.

Create administrative resources for the ADP partition.

AX(conigf)# admin <name> password <pwd>
AX(config-admin:name)# privilege {read | write | partition-read | partition-write | partition-enable-
disable}

Note: Administrative resources can be created only with a global admin account.

12
ADP Configuration - Additional Commands
View existing partitions
WebUI: Config > Admin > Partition
CLI: AX# show partition
To modify existing partition’s configuration
WebUI: Config > Admin > Partition
CLI: AX(config)# partition <name>
[max-aflex-file num | network-partition {id}]
To change active partition
WebUI: Select partition in the banner
CLI: AX# active-partition [name | shared]
To save configuration
In a partition
WebUI: "Save“ Select partition in the banner
CLI: AX# write memory or write memory all-partitions
To view routing table
WebUI: Monitor > Network > Route > IPv4 Forwarding
CLI: AX# show ip fib

13
L3V Resource Allocation Feature (v2.7.0)
On release prior to 2.7.0 , when L3 Virtualization is enabled on an AX, all system
resources and connections are shared by all of the configured partitions.
You can manually enable connection limiting on a virtual server, server or port, but
this can be a large administrative task.
Starting Release 2.7.0, administrators have the ability to allocate AX system resources
for each partition.

14
L3V Resource Allocation Feature (Cont.)

The following AX system resources will be virtualized for allocation within each
partition through a Partition Template.

 Real servers  Static MAC entries  Bandwidth limit

 Service groups  Static ARP entries/neighbor  L4 cps limit
 Virtual servers  Static IPv4 routes  L7 cps limit
 Health monitors  Static IPv6 routes  NAT cps limit
 SSL certificates  Dynamic routes  SSL cps limit
 ACE entries  Concurrent
connections
 aFleX limit

15
L3v Resource Allocation Feature – 2.7.0

Resource Allocation Template

Application Resources

16
L3v Resource Allocation Feature – 2.7.0

Network and System Resources

17
L3V Resource Allocation Feature – 2.7.0

Template applied at New Partition

18
L3 Virtualization Benefits

19
Section summary

In this module, we discussed:

AX Management access
Backup and restore procedure
Upgrade and downgrade
AX Layer2 / VLAN
We have performed:
AX configuration back up and restore

20
Course map

Section 0: Course Introduction

Section 1: Load Balancing Concepts
Section 2: AX Management
Section 3: FTP
Section 4: HTTP
Section 5: HTTPS
Section 6: AX Acceleration
Section 7: AX Security
Section 8: High Availability
Section 9: AX Troubleshooting
Section 10: aFleX

21