B-series SAN tools and

Utilities
Module 2
Objectives

– Describe the options available to connect to the B-series switches

– CLI
– Web Tools
– B-series SAN Network Advisor

– Describe the initial configuration tasks

– Explain switch routing policy settings

Confidential – For Training Purposes Only 2

Command line interface

– Interface with ability to perform the full range of switch management functions
– CLI allows an admin or user to
– Access the full range of Fabric OS features, based on license keys
– Configure, monitor, dynamically provision, and manage every aspect of the SAN
– Configure and manage the fabric on multiple efficient levels
– Identify, isolate, and manage SAN events across every switch in the fabric
– Manage switch licenses
– Perform fabric stamping

– CLI can be accessed through:

– Telnet
– SSH
– Serial port
– Web Tools

Confidential – For Training Purposes Only 3

Initial configuration (1 of 5)

– The following slides will explain steps necessary when installing a switch
– Each switch in a fabric requires a unique domain id
– It is a best practice to configure the Domain ID as part of the initial set up.

– When connecting the switch to the customer LAN it requires a unique IP address, DHCP is also supported
– One switch must be connected to the LAN to manage the fabric using SSH, Telnet, Web Tools or Network Advisor
– This should be the most redundant switch also known as the seed switch or principal switch

– First time setup requires the following:

– Workstation/laptop with an installed terminal emulator (such as HyperTerminal)
– Serial cable (this is supplied with the switch)
– Ethernet cable
– Access to an FTP server, SCP server or USB device for backing up the switch configuration or loading firmware

Confidential – For Training Purposes Only 4

Initial configuration (2 of 5)

– If you are using static IP addressing, you will need the following items (not required if you are using
Dynamic Host Configuration Protocol (DHCP)):
– Fixed IP address (IPv4 or IPv6) for the switch
– Subnet mask value
– Default gateway value
– World Wide Name (WWN), located on the switch ID pull-out tab
– Ethernet connection (hub or switch)
– Browser that allows pop-up windows

Confidential – For Training Purposes Only 5

Initial configuration (3 of 5)

– Connect the serial cable to the serial port on the switch and to a RS-232 serial port on the workstation
– Open a terminal emulator program
– Configure the application as follows:
For most windows systems:
– Bits per second: 9,600
– Data bits: 8
– Parity: None
– Stop bits: 1
– Flow control: None
For most Unix systems:
– tip /dev/ttyb -9600
– If ttyb is already in use, try ttya

– If the emulation program allows logging enable logging

– Power up the switch and monitor the POST progress

Confidential – For Training Purposes Only 6

Initial configuration (4 of 5)

– When the terminal emulator stops reporting information press Enter to display the login prompt
– Login to the switch with the username admin and the default password, password
– You will be prompted to change the default passwords at initial login
– To set a static IP address
– For IPv4
– ipaddrset {ipaddress}
– For IPv6
– ipaddrset -ipv6 –-add {IPv6 address}
– Enter the remaining network information at the prompts
– Verify the ipaddress using ipaddrshow
– Logout of the switch enter logout

– Disconnect the serial cable and connect the Ethernet port to the customer LAN

Confidential – For Training Purposes Only 7

Initial configuration (5 of 5)

– Configure the date and time

– Connect to the switch using Telnet or SSH
– Login to the switch using username admin and the password
– Enter the date command date “mmddHHMMyy”
– Enter the timezone command tstimezone –interactive
– If desired, enter the NTP configuration using tsclockserver “<ntp1;ntp2>”
– Verify there is no pre-existing incompatible zone configurations on the switch enter cfgshow
– Clear any invalid zone configurations prior to connecting the switch to an existing fabric

– Verify the version of Fabric OS (FOS) on the switch enter showversion

– If FOS needs to be changed perform a firmware download
– This process will be covered in a future discussion

Confidential – For Training Purposes Only 8

Configure Parameters

– Customers may require customized settings on the – Switch configuration parameters can be set with the
switch such as a static Domain ID or other fabric related configure command:
settings – Switch fabric parameters
– This needs to be performed prior to adding the switch to – Virtual channel parameters
an existing fabric – F_Port login parameters
– When the switch is enabled only a subset of the – Zoning operation parameters
configure command parameters are available – Remote State Change Notifications (RSCN) transmission
mode
– Arbitrated Loop parameters
– System Services settings
– Portlog Events enable or disable settings
– Secure Socket Layer (SSL) attributes
– Remote Procedure Call Daemon (RPCD) attributes
– Web Tools attributes

Confidential – For Training Purposes Only 9

Upgrading FOS using CLI and ftp

– Download the firmware file from HPE.com and extract the file to the ftp directory

– Connect to the switch via SSH or telnet and login to the switch as the admin user

– Enter the command firmwaredownload press return (an interactive session will begin)
– switch:admin> firmwaredownload
Server Name or IP Address: {ipaddress of the ftp server}
User Name: {ftp user name}
File Name: { path to the top level firmware folder }
Network Protocol(1-auto-select, 2-FTP, 3-SCP, 4-SFTP) [1]: 2
Password: {ftp user password}
Do you want to continue with FTP (Y/N) [N]:
– Firmware download takes time to complete. Monitor the activity.

– By default, firmwareDownload reboots the switch to activate the new FOS

– Options may be different for different hardware platforms

Confidential – For Training Purposes Only 10

configDefault

– Resets the nonpersistent configuration data to factory – Parameters not affected by this command are:
defaults – Ethernet MAC address, IP address, subnet mask, and boot ROM
parameters
– IP gateway address
– License keys
– OEM customization
– Product ID and Vendor ID
– SNMP configuration
– System name
– Chassis name
NOTICE: configDefault resets the switch to factory defaults, not HPE defaults. HPE
default configurations are available for download and should be applied using – World wide name
configDownload if configDefault has been executed.
– Zoning configuration (includes aliases, zones, and configurations)
– Security parameters and policies
– User account passwords (includes all user configuration and all built-in
accounts)
– Switch PID format
– Ethernet Link Mode

Confidential – For Training Purposes Only 11

configUpload

– Anytime the configuration changes on a switch a backup should be captured

– From Telnet or SSH execute configUpload an interactive session will begin
– Available for fabrics with and without virtual fabric configurations
– The saved configuration file can be restored to the switch using configDownload

Confidential – For Training Purposes Only 12

configUpload from CLI using sftp

– To upload the switch configuration interactively from a – To upload the switch configuration that belongs to a
switch that is not enabled for Virtual Fabrics: logical switch with Virtual Fabric FID 100:
switch:admin> configupload switch:admin> configupload

Protocol (scp, ftp, sftp, local) [ftp]: sftp Protocol (scp, ftp, sftp, local) [ftp]: sftp

Server Name or IP Address [host]: 192.168.38.245 Server Name or IP Address [host]: 10.32.220.100

User Name [user]: jdoe User Name [user]: jdoe

File Name [/config.txt]: File Name [/config.txt]: config.fid100.txt

Section (all|chassis|switch [all]): Section (all|chassis|FID# [all]): 100

Password: ****** Password: ******

configUpload complete: All config parameters are configUpload complete: All config parameters are

uploaded uploaded

Confidential – For Training Purposes Only 13

Switch routing policy

Exchange based Routing Port based routing Device based Routing

– HPE default setting – The routing path is based on the – Supported in FICON environments
incoming port and the destination and only in open environments
– The routing path is based on the
domain when FICON coexists
SID, DID and OXID optimizing path
utilization for the best performance – Dynamic Load Sharing can be – Optimizes routing path selection
enabled to balance the load across and utilization based on the SID
– Every exchange can take a different
the available output ports and DID of the path source and
path destination ports
– In order delivery is guaranteed
– Dynamic load sharing is required
and can not be disabled.
– Does not guarantee in order
delivery unless it is forced

  NOTE: Not all switches in a fabric require the same routing policy.

Confidential – For Training Purposes Only 14

aptpolicy and DLS

aptpolicy DLS
– To display the current routing policy using cli – dlsshow to display the current setting
– Enter aptpolicy with no parameters – dlsset to enable it
– Enter aptpolicy # to change the switch routing policy
– dlsreset to disable it
switch:admin> aptpolicy
Current Policy: 2 switch:admin> dlsshow
3 : Default Policy DLS is not set with Lossless disabled
1: Port Based Routing Policy switch:admin> dlsset
2: Device Based Routing Policy (FICON support only)
switch:admin> dlsshow
3: Exchange Based Routing Policy
DLS is set with Lossless disabled
switch:admin> dlsreset
switch:admin> dlsshow
DLS is not set with Lossless disabled

Confidential – For Training Purposes Only 15

Forcing In order frame delivery

– HPE recommends setting in order delivery to enabled

– This is HPE’s default
– Brocade does not enable this by default

– When enabled the switch guarantees the frames will be delivered in order even during topology changes
– If disabled the switch guarantees in order delivery when there are no topology changes

– To manipulate in order delivery from CLI

– To enable enter iodset
– To disable enter iodreset
– To see the current setting enter iodshow

Confidential – For Training Purposes Only 16

Web Tools

Confidential – For Training Purposes Only 17

Web Tools overview

– Embedded graphical user interface (GUI) that enables administrators to monitor and manage single or
small fabrics, switches and ports.
– Available via a standard internet browser session or from B-Series SAN Network Advisor
– Limited feature set available without a EGM license
– As of FOS v6.1.1 some Web Tools capabilities have been moved to Brocade Network Advisor

– System requirements with FOS 8.0.0

– Any browser that conforms to HTML 4.0
– JavaScript 1.0
– JRE 1.8.0_66 update or later

Confidential – For Training Purposes Only 18

Web Tools overview

– Enable the fabric administrator to:

– Configure individual switch IP address, switch name, and SNMP settings
– Upgrade switch firmware and control switch boot options
– Maintain administrative user logins and passwords
– Configure individual user logins and passwords using Role-Based Access Control
– Configure RADIUS support logins,
– Manage license keys
– Configure access Ports on Demand
– Configure routing strategies
– Manage ISLs and trunking

Confidential – For Training Purposes Only 19

Basic performance management and monitoring

– Provided a centralized management view of all switches in the fabric and their current status
– One-glance access to a switch, port and FRU operational status
– Perform administration and configuration tasks for the entire SAN fabric
– View real-time performance data for monitoring and tuning the fabric
– Prior to 7.2.0 it was called Advanced performance monitor
– 7.2.0 and later it is called Flow vision

NOTE: The Flow Vision v7.4.1 Administrators guide is available at

http://h20565.www2.hpe.com/hpsc/doc/public/display?sp4ts.oid=5232503&docLocale=en_US&
  docId=emr_na-c04893091

Confidential – For Training Purposes Only 20

Accessing Web Tools

– Open a standard internet browser and enter

http://{switch ip address} or

https://{switch ip address}
press enter
– If the supported JRE is not installed on the
local system it will prompt the user to
download it.
– Enter in the user name and password for the
switch

Confidential – For Training Purposes Only 21

Web Tools, the EGM license and B-Series SAN Network Advisor

– Basic Web Tools

– Is tiered and integrated with B-Series SAN Network Advisor from Fabric OS 6.1.1 and later
– Is the administrative control point for additional licensed features

– Web Tools with the EGM license

– Enables advanced features

– B-Series SAN Network Advisor

– Some capabilities have moved from Web Tools to Network Advisor

NOTE: A list of features available with Web Tools and EGM and Network Advisor is available in
the Web Tools Administrator Guide 7.4.1
  http://h20565.www2.hpe.com/hpsc/doc/public/display?sp4ts.oid=5232503&docLocale=en_US&
docId=emr_na-c04893113

Confidential – For Training Purposes Only 22

B-Series SAN Network Advisor

Confidential – For Training Purposes Only 23

B-Series SAN Network Advisor Overview

– Centralized, end-to-end management of SANs

– Provides critical flexibility, seamlessly scaling from small environments to large-scale and highly distributed geographic locations

– Reduce operating expenses and maximize IT productivity with policy-based automation and wizard-driven configuration, including
configuring and managing dynamic groups of devices

– Provides comprehensive support for Fibre Channel SAN management with configuration, zoning, and visualization capabilities, including
end-to-end HBA, storage, SAN fabric, and Layer 2 switch topology views

– Helps meet SLAs via proactive alerting and advanced diagnostic capabilities, including SAN port diagnostics, bottleneck detection, and
best practices validation of SAN configurations

– Enables robust security administration with fine-grain Role-Based Access Control (RBAC) and comprehensive Authentication,
Authorization, and Accounting (AAA) capabilities
– Maximizes investment protection with simplified migration from existing B-series management tools

– B-Series SAN Network Advisor

https://www.hpe.com/us/en/product-catalog/storage/storage-software/pip.hpe-b-series-san-network-advisor-software.3832744.html

Confidential – For Training Purposes Only 24

Features (1 of 2)

– User management
– SAN configuration
– SAN diagnostics
– FCoE/DCB management
– FCIP
– Security management

Confidential – For Training Purposes Only 25

Features (2 of 2)

– Configuration management
– Flexible reporting
– Event management
– Change management
– Performance monitoring

Confidential – For Training Purposes Only 26

Basic Management

– Available at no charge
– Manage up to 2 FOS fabrics
– Up to 300 switch ports
– Does not manage B-series DC SAN Backbone Director, SN8000B 8-Slot SAN Director or FICON

Confidential – For Training Purposes Only 27

Advanced Management

– Adaptive Networking features

– Quality of service
– Ingress rate limiting
– Traffic isolation zones

– HPE SAN Network Advisor Professional Plus

– Manage up to 36 SAN Fabrics
– Up to 2560 switch ports
– Medium business supporting HPE DC04 SAN Director and HPE SN8000B 4-Slot SAN Director

– HPE SAN Network Advisor Enterprise

– Manage up to 100 fabrics
– Up to 15000 switch ports
– Adds support for HPE DC SAN Backbone Director and HPE SN8000B 8-Slot SAN Director
– Required for FICON fabrics

Confidential – For Training Purposes Only 28

Enhanced Group Management

– Enables multi-switch operations for switches with EGM enabled

– Helps automate operations across multiple switches
– Saves time
– Streamlines repetitive, error-prone operations

– Drives consistency across fabrics

– Minimizes the risk associated with potential downtime due to configuration mismatches
– Provides streamlined troubleshooting for more effective fabric monitoring and diagnosis
– Is enabled through B-Series SAN Network Advisor
– Is a licensed feature on the switch

Confidential – For Training Purposes Only 29

Zoning

– Zoning impact analysis

– Multi-User Zoning
– Quality of Service Zoning
– LSAN Zoning

Confidential – For Training Purposes Only 30

Application Overview

– Centralized network management

– Two-part application
– Server
– Client

– Audits and verifies managed count against maximum license limits

– Every three hours from server start time
– When a new client logs in
– When the license dialog box is accessed

Confidential – For Training Purposes Only 31

SAN discovery

Confidential – For Training Purposes Only 32

Application Configuration

– Options dialog allows customization of the application – Miscellaneous Security

preferences – Server Backup
– Event storage – Syslog Registration
– Flyovers – Trap Registration
– Look and Feel – Trap Forwarding Credentials
– OUI mapping – Certificates
– Performance Graph Style – Client Export Port
– SAN Display – Memory Allocation
– SAN End Node Display – Product Communication
– SAN Ethernet Loss Events – FTP/SCP/SFTP Servers
– SAN Names – Server Port
– Support Mode

Confidential – For Training Purposes Only 33

Server Management Console overview

– Allows management of the services used

– Administrator or root access is required to stop, start or restart the services
– Allows the user to change the server database password

Confidential – For Training Purposes Only 34

Activity

Lab 1 Using Web tools

Lab 2 Using CLI
Lab 3 Installing and Using Network Advisor
Lab 4 Configuring the switches
Lab 5 Updating Fabric OS

Confidential – For Training Purposes Only 35

Thank you
Confidential – For Training Purposes Only 36