Manual Chapter :
System Controller Management
Applies To:
Show Versions
F5OS-C
- 1.1.4, 1.1.3, 1.1.2, 1.1.1, 1.1.0
System Controller Management
System controller overview
A VELOS chassis contains a redundant pair of system controllers. Together,
the system controllers provide a high bandwidth interconnect between blades, as well as
external management connectivity to the blades. Each controller has a front-panel serial
console and a front panel Ethernet management port. System controllers operate in an
active-active state when routing traffic between blades but otherwise operate in a
active-standby state for management functions.
Three management IP addresses are assigned to the system controllers during initial
configuration:
- System controller 1 management IP address
- System controller 2 management IP address
- Floating IP address
The floating IP address should be the primary management address for the
system so that connections go to the active system controller. You can use the floating
IP address to manage the system from the webUI, system controller CLI, or REST APIs.
There are rare cases for logging in to an individual system controller IP address, such
as troubleshooting.
System controller high availability overview
The system controllers are designed to work together as a redundant, high
availability pair.
One of the system controllers is designated as active (or the primary node),
and the other as standby. The system controllers act as an active-standby pair for
system management and as an active-active pair with regard to traffic processing on the
backplane. Each system controller handles half of the traffic in the chassis; if a
controller is not available, the available bandwidth of the chassis is halved.
Centralized management functions include hosting the primary (floating) IP address and
providing the webUI, CLI, and REST API interfaces that you use to configure and manage
the VELOS system.
The default mode for system controller high availability (HA) is Auto, which
lets the system select the system controller that is best suited at the time to be the
active system controller. This is the recommended setting.
It is possible to set a preference for either system controller to be
active; however, this should rarely be necessary. When you do specify a preference for a
particular system controller, that controller will become active if it is in a healthy
operational state. If the preferred controller is not present or unhealthy, the
non-preferred system controller becomes active. When the preferred system controller
returns to an available state, a switchover occurs.
Configure high availability for the system
controllers from the webUI
The system controllers work together as a redundant
pair. The default mode for system controller high availability (HA) is Auto, which
automatically selects the system controller that is best suited at the time as the
active controller, and fails over as needed. You should not need to change the default
configuration, but you can change the configuration as described here, or initiate a
failover from the active controller to the standby.
- Log in to the system controller webUI using an account with admin access.
- On the left, click
- If, for some reason, you want to change the way high availability is working, for thePreferred Nodefield, selectSystem Controller 1orSystem Controller 2to act as an active system controller or chooseAuto(recommended).Changing the Preferred Node configuration creates a failover event, and ends the session if selecting the system controller currently acting as the standby. Wait 30 seconds and then start a new session with either the floating IP address or the active system controller IP address after the change has completed.Hardware health conditions of the system controllers always take precedence. If one of the controllers is not healthy, the chassis partition will ignore the preference and synchronize with the healthy system controller.
- To force a failover to occur now, clickFailover.TheFailoverbutton is available only whenPreferred Nodefield is set toAuto.You would only do this if for some reason you want to change which controller is being used from the current active controller to the current standby controller.
View high availability status for the system controllers
from the CLI
You can view the status of system controller high
availability (HA) from the command-line interface (CLI).
- Connect to the system using a management console or console server.The default baud rate and serial port configuration is 19200/8-N-1.
- Log in using the admin account.su admin
- View the current HA configuration for the system controllers.show system redundancy stateThis command sequence indicates which controller is designated as the active controller.
Configure high availability for the system controllers from the
CLI
You can change the preferred system
controller high availability (HA) mode from the command-line interface (CLI).
- Connect to the system using a management console or console server.The default baud rate and serial port configuration is 19200/8-N-1.
- Log in using the admin account.su admin
- Change to config mode.configThe CLI prompt changes to include(config).
- Change system controller redundancy to a specified mode.syscon-1-active(config)# system redundancy config mode Possible completions: auto System chooses preferred node automatically. (Default) prefer-1 Prefer controller-1 to be active. prefer-2 Prefer controller-2 to be active.This example sets controller-1 as the preferred active system controller.system redundancy config mode prefer-1
- Commit the configuration changes.commit
About the chassis terminal service
With VELOS chassis, blades do not have physical console ports. Each system
controller has a physical console port. The system controllers in the chassis provide a
terminal service that enables authorized users to access blade consoles over SSH using
the chassis floating address.
At a high level, these user roles have terminal service
access:
- Admin
- Users with this role can access any terminals in the chassis.
- Terminal server admin
- Operator
- Users with this role can access any terminals in the chassis.
- Partition
- Users with this role are not given access to any terminals in the chassis.
Since the chassis terminal service uses SSHD, clients can
connect using SSH. The terminal service uses a range of network port numbers
to differentiate between connections being requested to the various consoles
in the chassis.
You can also access any blade console by selecting the
desired blade using the Always-On Management (AOM) Command Menu after you
connect a serial cable to either of the system controllers' console ports. For
more information about AOM, see the section entitled
About Always-On Management
in the platform guide for your VELOS
chassis
.Console port numbers
The
VELOS
chassis terminal service uses a range of network port numbers to differentiate
between connections being requested to either the blade or system controller
consoles in a chassis. Console |
Port number |
|---|---|
System controller 1 |
7100 |
System controller 2 |
7200 |
Blade <1...x> |
700x |
Connect to a blade or system controller using the chassis
terminal service
If you are an authorized user, you can
connect to a blade or system controller using the chassis terminal service.
- Connect using SSH to the blade or system controller that you want to access.ssh <blade_or_sys_controller_ip_address> -l admin -p <port_number>This example opens an SSH session as an admin user to the blade in slot 1:ssh 192.0.2.10 -1 admin -p 7001This example opens an SSH session as an admin user to the system controller in slot 2:ssh 192.0.2.10 -1 admin -p 7200If there is not already an active terminal session attached to the specified console, you are connected immediately. If there is already an active terminal session attached, you can choose to terminate the existing terminal session and replace it.
When you complete your terminal session to a blade
or a system controller, you can terminate your session by typing the
Enter ~.
(tilde period) command
sequence.
