Phase 3: Run the Prerequisite Checker

Network Communication

You must run the Prerequisite Checker to ensure that all firewall rules are setup correctly for inter-communication across various CloudCenter components, worker VMs, and end user access.

CloudCenter Component VMs

To perform network compliance checks for all CloudCenter components, perform the following procedure on every virtual machine launched as part of the Phase 1: Prepare Infrastructure .

  1. Upload the deployment descriptor JSON file created in Phase 1: Prepare Infrastructure to the /tmp location.

  2. Upload the validator script called network_validator.py (available with the CloudCenter installer files) file to the /tmp location.

  3. Execute the following command from the /tmp location:

    python
    network_validator.py –-role=<role> --region=<unique region
    identifier> --deploymentDetails=<envdeployment descriptor JSON file
    path>

    Here are some examples of executing this command:

    • python
      network_validator.py –-role=CCM --deploymentDetails=deployment.json
    • python
      network_validator.py –-role=CCO_PRIMARY --region=AmazonEast1
      --deploymentDetails=deployment.json
    • python
      network_validator.py –-role=AMQP_LB --region=AmazonEast1
      --deploymentDetails=deployment.json
  4. After executing the network_validator.py script for each CCM, CCO and AMQP component, a file named cloudcenter_validator.json is created in the /tmp location for the CCM, CCO, and AMQP servers. The following example is the cloudcenter_validator.json file created for CCM.

    [{
        "TO_ROLE": "CCO",
        "region": "AWSEast",
        "TO_IP": "12.1.4.5",
        "PORT": 8443,
        "RESULT": "Success"
    }, {
        "TO_ROLE": "PACKAGE_STORE",
        "TO_IP": "repo.cliqrtech.com",
        "PORT": 80,
        "RESULT": "Success"
    }] 
  5. Verify the results of this command to ensure the following:
    • You did not encounter any failures. In case of failures, update your network settings as appropriate and repeat the test.
    • All required network rules are setup correctly.

Application (Worker) VMs

You must also perform network compliance checks to ensure that Application VMs that are launched as part of the application orchestration process can communicate with relevant CloudCenter components and repositories.

To perform network compliance checks for all Application VMs, perform the following procedure.

  1. Launch a test virtual machine in every cloud environment intended to be managed by the CloudCenter platform

  2. Upload the deployment descriptor JSON file created in Phase 1: Prepare Infrastructure to the /tmp location.

  3. Upload the validator script called network_validator.py. file to the /tmp location.

  4. Execute the following command from the /tmp location:

    python network_validator.py --role=AGENT --region=<unique region identifier>
    --deploymentDetails=<deployment descriptor JSON file path>

    Here is an example of executing this command:

    python network_validator.py
    --role=AGENT --region=AmazonEast1 --deploymentDetails=deployment.json
  5. Verify the results of this command to ensure the following:
    • You did not encounter any failures. In case of failures, update your network settings as appropriate and repeat the test.
    • All required network rules are setup correctly.
  6. Once you ensure that all the compliance checks were successful, terminate all the test VMs.

Client Test

Some CloudCenter components (for example, CCM, AMQP, or GUAC) may need to be accessible by your end users to access the CloudCenter UI (also called the CCM UI or UI) or to invoke CloudCenter REST APIs. To verify client access to such components, perform the following procedure.

  1. Identify Linux, Windows (Python Enabled) or MacOSX systems running in networks from where your end users will be managing the CloudCenter platform.

  2. Upload the deployment descriptor JSON file to this client machine.

  3. Upload the network_validator.py. file to this client machine.

  4. Execute the following command from the location of the Python script.

    python network_validator.py --role=CLIENT  --deploymentDetails=deployment.json
  5. Verify the results of this command to ensure the following:
    • You did not encounter any failures. In case of failures, update your network settings as appropriate and repeat the test.
    • All required network rules are setup correctly.

 

IMPORTANT!

Before proceeding to Phase 4: Install and Configure CloudCenter Components, ensure that all your network compliance checks are successful.

The only error that you can ignore is for the Docker Registry connectivity:

Component DOCKER_REGISTRY IP repo.cliqrtech.com:5000 Port 5000 is not open!



  • No labels