High-Level
At a high-level, the steps are:
- Vserver create
- Vserver remove-protocols
- Route create
- Network interface create (x4)
- DNS A-records and PTR records create (Wintel administrator)
- DNS create
- Cifs server create
- Add SPNs (Wintel administrator)
- NFS server create
- LDAP client create
Repeat steps to create the DR SVM. Then complete cluster and vserver peering.
- Cluster peering (if not already done)
- Vserver peering
Low-Level
cluster1 in Site A
Vserver create for production SVM (cluster1 in Site A):
vserver create -vserver siteaPR1svm -rootvolume siteaPR1svm_root -aggregate cluster1_01_SSD_1 -rootvolume-security-style unix -language C.UTF-8 -snapshot-policy none -comment "Site A PR1 SVM"
vserver remote-protocols -vserver siteaPR1svm -protocols fcp,iscsi,nvme,s3 # leaves nfs,cifs,ndmp
route create -vserver siteaPR1svm -destination 0.0.0.0/0 -gateway 192.168.0.1 -metric 20
net int create -vserver siteaPR1svm -lif n1e0e_nas -home-node cluster1-01 -home-port e0e -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.141
net int create -vserver siteaPR1svm -lif n1e0f_nas -home-node cluster1-01 -home-port e0f -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.142
net int create -vserver siteaPR1svm -lif n2e0e_nas -home-node cluster1-02 -home-port e0e -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.143
net int create -vserver siteaPR1svm -lif n2e0f_nas -home-node cluster1-02 -home-port e0f -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.144
Note 1: The design has 4 nodes and 4 lifs but we only have 2 nodes in the lab.
Note 2: Even though the nas LIFs aren't tied to a node, we just name them based on their home ports and protocol.
Create DNS records for:
siteaPR1svm.demo.company.com 192.168.0.141
siteaPR1svm.demo.company.com 192.168.0.142
siteaPR1svm.demo.company.com 192.168.0.143
siteaPR1svm.demo.company.com 192.168.0.144
siteaPR1svm_n1e0e_nas.demo.company.com 192.168.0.141 <-- and PTR record
siteaPR1svm_n1e0f_nas.demo.company.com 192.168.0.142 <-- and PTR record
siteaPR1svm_n2e0e_nas.demo.company.com 192.168.0.143 <-- and PTR record
siteaPR1svm_n2e0f_nas.demo.company.com 192.168.0.144 <-- and PTR record
dns create -vserver siteaPR1svm -domains demo.company.com -name-servers 192.168.0.253
cifs server create -vserver siteaPR1svm -cifs-server siteaPR1svm -domain demo.company.com
Attach SPNs to siteaPR1svm:
siteaPR1svm.demo.company.com
siteaPR1svm_n1e0e_nas.demo.company.com
siteaPR1svm_n1e0f_nas.demo.company.com
siteaPR1svm_n2e0e_nas.demo.company.com
siteaPR1svm_n2e0f_nas.demo.company.com
nfs server create -vserver siteaPR1svm
LDAP client configuration for RFC 2307bis.
ldap client create -client-config ldap_client -vserver siteaPR1svm -schema MS-AD-BIS -ad-domain demo.company.com
Note: Useful commands for troubleshooting:
secd authentication show-creds -node NODENAME -vserver VSERVERNAME -win-name bob
nblade credentials flush -vserver VSERVERNAME -unix-user-name bob
cluster2 in Site B
Vserver create for the DR SVM (cluster2 in Site B):
vserver create -vserver siteaDR1svm -rootvolume siteaDR1svm_root -aggregate cluster1_01_SSD_1 -rootvolume-security-style unix -language C.UTF-8 -snapshot-policy none -comment "Site A DR1 SVM"
Note: It is an active SVM since we are using volume snapmirror for replication (not SVM DR) and will allow DR testing (i.e. an application owner can DR test their application without invoking DR for the whole SVM.)
vserver remote-protocols -vserver siteaDR1svm -protocols fcp,iscsi,nvme,s3 # leaves nfs,cifs,ndmp
route create -vserver siteaDR1svm -destination 0.0.0.0/0 -gateway 192.168.0.1 -metric 20
net int create -vserver siteaDR1svm -lif n1e0e_nas -home-node cluster1-01 -home-port e0e -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.241
net int create -vserver siteaDR1svm -lif n1e0f_nas -home-node cluster1-01 -home-port e0f -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.242
net int create -vserver siteaDR1svm -lif n2e0e_nas -home-node cluster1-02 -home-port e0e -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.243
net int create -vserver siteaDR1svm -lif n2e0f_nas -home-node cluster1-02 -home-port e0f -data-protocol nfs,cifs -netmask 255.255.255.0 -address 192.168.0.244
Create DNS records for:
siteaDR1svm.demo.company.com 192.168.0.241
siteaDR1svm.demo.company.com 192.168.0.242
siteaDR1svm.demo.company.com 192.168.0.243
siteaDR1svm.demo.company.com 192.168.0.244
siteaDR1svm_n1e0e_nas.demo.company.com 192.168.0.241 <-- and PTR record
siteaDR1svm_n1e0f_nas.demo.company.com 192.168.0.242 <-- and PTR record
siteaDR1svm_n2e0e_nas.demo.company.com 192.168.0.243 <-- and PTR record
siteaDR1svm_n2e0f_nas.demo.company.com 192.168.0.244 <-- and PTR record
dns create -vserver siteaDR1svm -domains demo.company.com -name-servers 192.168.0.253
cifs server create -vserver siteaDR1svm -cifs-server siteaDR1svm -domain demo.company.com
Attach SPNs to siteaDR1svm:
siteaDR1svm.demo.company.com
siteaDR1svm_n1e0e_nas.demo.company.com
siteaDR1svm_n1e0f_nas.demo.company.com
siteaDR1svm_n2e0e_nas.demo.company.com
siteaDR1svm_n2e0f_nas.demo.company.com
nfs server create -vserver siteaDR1svm
LDAP client configuration for RFC 2307bis.
ldap client create -client-config ldap_client -vserver siteaDR1svm -schema MS-AD-BIS -ad-domain demo.company.com
Cluster and Vserver Peering
cluster1::> cluster peer create -peer-addrs LISTOFPEERADDRS
cluster2::> cluster peer create -peer-addrs LISTOFPEERADDRS
cluster1::> vserver peer create -vserver siteaPR1svm -peer-vserver siteaDR1svm -peer-cluster cluster2 -applications snapmirror
cluster1::> vserver peer accept -vserver siteaDR1svm -peer-vserver siteaPR1svm
Comments
Post a Comment