Cisco GSS-4492R-K9 Administration Manual
Cisco Global Site Selector Administration
Guide
Software Version 2.0
March 2007
Americas Headquarters
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-1706
USA
http://www.cisco.com
Tel: 408 526-4000
800 553-NETS (6387)
Fax: 408 527-0883
Text Part Number: OL-10410-01
THE SPECIFICATIONS AND INFORMATION REGARDING THE PRODUCTS IN THIS MANUAL ARE SUBJECT TO CHANGE WITHOUT NOTICE. ALL
C
k
S
I
E
N
P
a
A
STATEMENTS, INFORMATION, AND RECOMMENDATIONS IN THIS MANUAL ARE BELIEVED TO BE ACCURATE BUT ARE PRESENTED WITHOUT
WARRANTY OF ANY KIND, EXPRESS OR IMPLIED. USERS MUST TAKE FUL L RESPONSIBILITY FOR THEIR APPLICATION OF ANY PRODUCTS.
THE SOFTWA RE LICENSE AND LIMITED WARRANTY FOR THE ACCOMPANYING PRODUCT ARE SET FORTH IN THE INFORMATION PACKET THAT
SHIPPED WITH THE PRODUCT AND ARE INCORPORATED HEREIN BY THIS REFERENCE. IF YOU ARE UNABLE TO LOCATE THE SOFTWARE LICENSE
OR LIMITED WARRANTY, CONTACT YOUR CISCO REPRESENTATIVE FOR A COPY.
The Cisco im plementation of TCP header compression is an adaptati on of a program developed by the Uni versity of California, Berkeley (UCB) as part of UCB’s public
domain version of th e UNIX operating system. All rights reserved. Copyright © 1981, Regents of the Uni versity of California.
NOTWITHSTANDING ANY OTHER WARRANTY HEREIN, ALL DOCUMENT FILES AND SOFTWARE OF THESE SUPPLIERS ARE PROVIDED “AS IS” WITH
ALL FAULTS. CISCO AND THE ABOVE-NAMED SUPPLIERS DISCLAIM ALL WARRANTIES, EXPRESSED OR
LIMITATION, THOSE OF MERCHANTABIL ITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT OR ARISING FROM A COURSE OF
DEALING, USAGE, OR TRADE PRACTICE.
IN NO EVENT SHALL CISCO OR ITS SUPPLIERS BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, OR INCIDENTAL DAMAGES, INCLUDING,
WITHOUT LIMITATION, LOST PROFITS OR LOSS OR DAMAGE TO DATA ARISING OUT OF TH E USE OR INABILITY TO USE THIS MANUAL, EVEN IF CISCO
OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.
CSP, the Cisco Square Bridge logo, Follow Me Browsing, and StackWise are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn, and iQuic
tudy are service marks of Cisco Systems, Inc.; and Access Registrar, Aironet, ASIST, BPX, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, Cisco, the Cisco Certified
nternetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Empowering the Internet Generation,
nterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, FormShare, GigaDrive, GigaStack, HomeLink, Internet Quotient, IOS, IP/TV, iQ Expertise, the iQ logo, iQ
et Readiness Scorecard, LightStream, Linksys, MeetingPlace, MGX, the Networkers logo, Networking Academy, Network Registrar, Packet, PIX, Post-Routing, Pre-Routing,
roConnect, RateMUX, ScriptShare, SlideCast, SMARTnet, StrataView Plus, SwitchProbe, TeleRouter, The Fastest Way to Increase Your Internet Quotient, TransPath, and VCO
re registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
ll other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, comm and display output, and figures included in the
document are shown for illustrative purposes onl y. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
Cisco Global Site Selector Administ ration Guide
© 2007 Cisco System s, Inc. All ri ghts reserved.
IMPLIED, INCLUDING, WITH OUT
CONTENTS
Preface xi
Audience xi
How to Use This Guide xii
Related Documentation xiii
Symbols and Conventions xv
Obtaining Documentation, Obtaining Support, and Security Guidelines xvii
CHAPTER
CHAPTER
1 Managing GSS Devices from the GUI 1-1
Logging Into the Primary GSSM Graphical User Interface 1-2
Logging Into the GSS and Accessing the CNR GUI 1-4
Activating and Modifying GSS Devices 1-6
Activating GSS Devices from the Primary GSSM 1-6
Modifying GSS Device Name and Location 1-9
Deleting GSS Devices 1-10
Logically Removing a GSS or Standby GSSM from the Network 1-11
Configuring the Primary GSSM GUI 1-13
Printing and Exporting GSSM Data 1-14
Viewing Third-Party Software Versions 1-15
2 Managing the GSS from the CLI 2-1
Logging in to the CLI and Enabling Privileged EXEC Mode 2-2
Understanding GSS Software Licenses 2-3
Acquiring and Installing CNR and DDoS License Files 2-4
OL-10410-01
Cisco Global Site Selector Administration Guide
iii
Contents
Installing CNR 2-6
Accessing the CNR CLI 2-9
Invoking the Shell and Executing CNR Utilities 2-11
Using the startup-config and running-config Files 2-12
Changing the startup-config and running- config Files 2-12
Saving the startup-config and running-config Files 2-14
Loading the startup-config from an External File 2-15
Displaying the running-config File 2-15
Displaying the startup-config File 2-17
Managing GSS Files 2-18
Displaying the Contents of a File 2-18
Displaying Files in a Directory 2-20
Renaming GSS Files 2-21
Securely Copying Files 2-22
Deleting Files 2-23
Displaying Users 2-23
Specifying the GSS Inactivity Timeout 2-24
Configuring the Terminal Screen Line Length 2-24
Modifying the Attributes of the Security Certificate on the GSSM 2-25
Stopping the GSS Software 2-27
Shutting Down the GSS Software 2-27
Restarting the GSS Software 2-28
Performing a Cold Restart of a GSS Device 2-28
Disabling the GSS Software 2-28
Restoring GSS Factory-Default Settings 2-29
Replacing GSS Devices in Your GSS Network 2-30
Replacing the Primary GSSM in the Network 2-31
Cisco Global Site Selector Administration Guide
iv
Converting the Standby GSSM to a Primary GSSM 2-31
Replacing the Primary GSSM with an Available GSS 2-35
OL-10410-01
Contents
Replacing the Standby GSSM in the Network 2-37
Replacing a GSS in the Network 2-39
Changing the GSSM Role in the GSS Network 2-40
Switching the Roles of the Primary and Standby GSSM Devices 2-41
Reversing the Roles of the Interim Primary and Standby GSSM Devices 2-43
Displaying GSS System Configuration Information 2-44
Displaying Software Version Information 2-45
Displaying License Information 2-46
Displaying Memory Information 2-47
Displaying Boot Configuration 2-48
Displaying GSS Processes 2-49
Displaying System Uptime 2-50
CHAPTER
Displaying Disk Information 2-50
Displaying UDI Data 2-50
Displaying System Status 2-51
Displaying GSS Services 2-52
3 Creating and Managing User Accounts 3-1
Creating and Managing GSS CLI User Accounts 3-1
Creating a GSS User Account 3-2
Modifying a GSS User Account 3-3
Deleting a GSS User Account 3-3
Creating and Managing Primary GSSM GUI User Accounts 3-4
Privilege Levels for Using the Primary GSSM GUI 3-5
Creating a GUI User Account 3-9
Modifying a GUI User Account 3-12
Removing a GUI User Account 3-12
Changing the User Account GUI Password 3-13
Creating and Modifying User Views for the Primary GSSM GUI 3-15
OL-10410-01
Custom User View Overview 3-15
Cisco Global Site Selector Administration Guide
v
Contents
Creating a GUI User View 3-16
Modifying a GUI User View 3-24
Deleting a GUI User View 3-25
Modifying the Administrator Account Passwords 3-26
Resetting the Administrator CLI Account Password 3-26
Changing the Administrator CLI Password 3-27
Restoring or Changing the Administrator GUI Password 3-28
CHAPTER
4 Managing GSS User Accounts Through a TACACS+ Server 4-1
TACACS+ Overview 4-2
TACACS+ Configuration Quick Start 4-4
Configuring a TACACS+ Server for Use with the GSS 4-5
Configuring Authentication Settings on the TACACS+ Server 4-5
Configuring Authorization Settings on the TACACS+ Server 4-7
Configuring Primary GSSM GUI Privilege Level Authorization from the
TACACS+ Server 4-12
Enabling Custom User GUI Views When Authenticating a User from the
TACACS+ Server 4-16
Configuring Accounting Settings on the TACACS+ Server 4-17
Identifying the TACACS+ Server Host on the GSS 4-19
Disabling TACACS+ Server Keepalives on the GSS 4-22
Specifying the TACACS+ Server Timeout on the GSS 4-23
Specifying TACACS+ Authentication of the GSS 4-23
Specifying TACACS+ Authorization of the GSS 4-24
Specifying TACACS+ Accounting on the GSS 4-25
Showing TACACS+ Statistics on the GSS 4-26
Clearing TACACS+ Statistics on the GSS 4-28
Disabling TACACS+ on a GSS 4-28
Cisco Global Site Selector Administration Guide
vi
OL-10410-01
Contents
CHAPTER
CHAPTER
5 Configuring Access Lists and Filtering GSS Traffic 5-1
Filtering GSS Traffic Using Access Lists 5-1
Access List Overview 5-2
Creating an Access List 5-4
Associating an Access List with a GSS Interface 5-7
Disassociating an Access List from a GSS Interface 5-8
Adding Rules to an Access List 5-8
Removing Rules from an Access List 5-9
Segmenting GSS Traffic by Ethernet Interface 5-9
Displaying Access Lists 5-10
Deploying GSS Devices Behind Firewalls 5-12
GSS Firewall Deployment Overview 5-12
Configuring GSS Devices Behind a Firewall 5-16
6 Configuring SNMP 6-1
CHAPTER
Overview 6-1
Configuring SNMP on the GSS 6-2
Configuring SNMP Servers 6-4
Configuring SNMP Server Notifications 6-5
Configuring SNMP Server Trap Limits 6-6
Specifying Recipients for SNMP Notification Operations 6-7
Viewing SNMP Status 6-8
Viewing MIB Files on the GSS 6-9
7 Backing Up, Restoring, and Downgrading the GSSM Database 7-1
Backing Up the Primary GSSM 7-2
Backup Overview 7-2
Performing a Full Primary GSSM Backup 7-3
OL-10410-01
Cisco Global Site Selector Administration Guide
vii
Contents
Restoring a Primary GSSM Backup 7-4
Restore Overview 7-4
Restoring Your Primary GSSM from a Previous Backup 7-5
Downgrading Your GSS Devices 7-8
CHAPTER
CHAPTER
8 Monitoring GSS Operation 8-1
Monitoring GSS and GSSM Status 8-2
Monitoring the GSS Device Online Status from the CLI 8-2
Monitoring the GSS Device System Status from the CLI 8-4
Monitoring the GSS Device Status from the Primary GSSM GUI 8-4
Monitoring GSSM Database Status 8-5
Monitoring the Database Status 8-5
Validating Database Records 8-6
Creating a Database Validation Report 8-6
Viewing the GSS Operating Configuration for Technical Support 8-8
9 Viewing Log Files 9-1
Understanding GSS Logging Levels 9-1
Configuring System Logging for a GSS 9-4
Specifying a Log File on the GSS Disk 9-5
Specifying a Host for a Log File Destination 9-6
Specifying a Syslog Facility 9-8
Viewing Device Logs from the CLI 9-9
Viewing the gss.log File from the CLI 9-10
Viewing System Message Logging 9-11
Viewing Subsystem Log Files from the CLI 9-11
Rotating Existing Log Files from the CLI 9-12
Viewing System Logs from the Primary GSSM GUI 9-13
Viewing System Logs from the Primary GSSM GUI 9-14
Cisco Global Site Selector Administration Guide
viii
OL-10410-01
Contents
Purging System Log Messages from the GUI 9-15
Common System Log Messages 9-16
Viewing GSS System Logs Using CiscoWorks RME Syslog Analyzer 9-18
APPENDIX
I
NDEX
A Upgrading the GSS Software A-1
Verifying the GSSM Role in the GSS Network A-2
Backing up and Archiving the Primary GSSM A-3
Obtaining the Software Upgrade A-3
Upgrading Your GSS Devices A-5
OL-10410-01
Cisco Global Site Selector Administration Guide
ix
Contents
Cisco Global Site Selector Administration Guide
x
OL-10410-01
Audience
Preface
This guide includes information on configuring the Cisco Global Site Selector
(GSS). It describes the procedures necessary to properly manage and maintain
your Global Site Selector Manager (GSSM) and GSS devices, including login
security, GSS software upgrades, GSSM database administration, and log files.
This preface contains the following major sections:
• Audience
• How to Use This Guide
• Related Documentation
• Symbols and Conventions
• Obtaining Documentation, Obtaining Support, and Security Guidelines
To use this guide, you should be familiar with the Cisco Global Site Selector
hardware, which is discussed in the Global Site Selector Hardware Installation
Guide. In addition, you should be familiar with basic TCP/IP and networking
concepts, router configuration, Domain Name System (DNS), the Berkeley
Internet Name Domain (BIND) software or similar DNS products, and your
organization’s specific network configuration.
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
OL-10413-01
xi
How to Use This Guide
This guide includes the following chapters:
Chapter/Title Description
Preface
Chapter 1, Managing
GSS Devices from the
GUI
Chapter 2, Managing the
GSS from the CLI
Chapter 3, Creating and
Managing User Accounts
Chapter 4, Managing
GSS User Accounts
Through a TACACS+
Server
Chapter 5, Configuring
Access Lists and
Filtering GSS Traffic
Describes how to configure and manage your GSSM
and GSS devices from the primary GSSM graphical
user interface, including activating and configuring
GSS devices.
Describes how to manage the GSS software from the
CLI, including configuring a replacement GSS
device for use in your GSS network and changing the
GSSM role in the network.
Describes how to create and manage GSS device
CLI login accounts and primary GSSM GUI login
accounts. This chapter also describes how to specify
user privileges and assign custom user views for
accessing the primary GSSM GUI.
Describes how to configure the GSS as a client of a
TACACS+ server for authentication, authorization,
and accounting.
Describes how to create access lists and access
groups to filter GSS traffic.
Chapter 6, Configuring
SNMP
Chapter 7, Backing Up,
Restoring, and
Downgrading the GSSM
Database
Chapter 8, Viewing Log
Files
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
xii
Describes how to configure Simple Network
Management Protocol (SNMP) on your GSS.
Describes the procedures to back up and restore the
primary GSSM database. This chapter also includes
a set of general guidelines for when and how to back
up your primary GSSM.
Includes information on auditing logged information
about your GSS devices.
OL-10413-01
Preface
Chapter/Title Description
Chapter 9, Monitoring
GSS Operation
Appendix A, Upgrading
the GSS Software
Related Documentation
In addition to this document, the GSS documentation set includes the following:
Document Title Description
Global Site Selector
Hardware Installation
Guide
Regulatory Compliance
and Safety Information
for the Cisco Global Site
Selector
Describes the tools that you can use to monitor the
status of your GSS devices and of global load
balancing on your GSS network.
Describes how to manually upgrade your GSS
software.
Information on installing your GSS device and
getting it ready for operation. It describes how to
prepare your site for installation, how to install the
GSS device in an equipment rack, and how to
maintain and troubleshoot the GSS hardware.
Regulatory compliance and safety information for the
GSS.
Release Note for the
Cisco Global Site
Selector
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
OL-10413-01
Information on operating considerations, caveats, and
new CLI commands for the GSS software.
xiii
Document Title Description
Preface
Cisco Global Site
Selector Getting Started
Guide
Cisco Global Site
Selector GUI-Based
Global Server
Load-Balancing
Configuration Guide
Cisco Global Site
Selector CLI-Based
Global Server
Load-Balancing
Configuration Guide
Cisco Global Site
Selector Command
Reference
Information on getting your GSS set up, configured,
and ready to perform global server load balancing.
Procedures on how to configure your primary GSSM
from the GUI to perform global server load
balancing, such as configuring source address lists,
domain lists, answers, answer groups, DNS sticky,
network proximity, and DNS rules. This document
also provides an overview of the GSS device and
global server load balancing as performed by the
GSS.
Procedures on how to configure your primary GSSM
from the CLI to perform global server load balancing,
such as configuring source address lists, domain lists,
answers, answer groups, DNS sticky, network
proximity, and DNS rules. This document also
provides an overview of the GSS device and global
server load balancing as performed by the GSS.
An alphabetical list of all GSS command-line
interface (CLI) commands including syntax, options,
and related commands. This document also describes
how to use the CLI interface.
Several of the Cisco CNS Network Registrar (CNR) documents are referenced in
this guide. The CNR version6.2 documentation set consists of the following
documents:
Document Title Description
Release Notes for the
Cisco CNS Network
Registrar, Release 6.2
Cisco CNS Network
Registrar Installation
Guide
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
xiv
Information on new software features, installation
updates, caveats, and documentation for the CNR
release.
Information on installing CNR on the supported
operating systems: Windows, Solaris, and Linux.
OL-10413-01
Preface
Document Title Description
Cisco CNS Network
Registrar User’s Guide
Cisco CNS Network
Registrar CLI Reference
Guide
Symbols and Conventions
This guide uses the following symbols and conventions to emphasize certain
information.
Command descriptions use the following conventions:
boldface font Commands and keywords are in boldface.
italic font Variables for which you supply values are in italics.
[ ] Elements in square brackets are optional.
Information on configuring CNR by using the
Web-based user interface (Web UI) and the command
line interface (CLI).
Information about how to use the CNR command-line
program, nrcmd.
OL-10413-01
{x | y | z} Alternative keywords are grouped in braces and separated
by vertical bars.
[x | y | z] Optional alternative keywords are grouped in brackets and
separated by vertical bars.
string A nonquoted set of characters. Do not use quotation marks
around the string, or the string will include the quotation
marks.
Screen examples use the following conventions:
screen font Terminal sessions and information the system displays are
in
screen font.
boldface screen
Information you must enter is in boldface screen font.
font
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
xv
Preface
italic screen
font
Variables for which you supply values are in italic screen
font.
This pointer highlights an important line of text in an
example.
^ The symbol ^ represents the key labeled Control. For
example, the key combination ^D in a screen display means
hold down the Control key while you press the D key.
< > Nonprinting characters, such as passwords, are in angle
brackets.
[ ] Default responses to system prompts are in square brackets.
!, # An exclamation point (!) or a pound sign (#) at the
beginning of a line of code indicates a comment line.
Graphical user interface elements use the following conventions:
boldface text Instructs the user to enter a keystroke or act on a GUI
element.
Courier text Indicates text that appears in a command line, including the
CLI prompt.
Courier bold
text
Indicates commands and text you enter in a command line.
italic text Directories and filenames are in italic font.
Caution A caution means that a specific action you take could cause a loss of data or
adversely impact use of the equipment.
Note A note provides important related information, reminders, and recommendations.
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
xvi
OL-10413-01
Preface
Obtaining Documentation, Obtaining Support, and
Security Guidelines
For information on obtaining documentation, obtaining support, providing
documentation feedback, security guidelines, and also recommended aliases and
general Cisco
Documentation, which also lists all new and revised Cisco
documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
documents, see the monthly What’s New in Cisco Product
technical
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
OL-10413-01
xvii
Preface
Cisco Global Site Selector CLI-Based Global Server Load-Balancing Configuration Guide
xviii
OL-10413-01
CHAPTER
1
Managing GSS Devices from the GUI
This chapter describes how to configure and manage your Global Site Selector
Manager (GSSM) and Global Site Selector (GSS) devices from the primary
GSSM graphical user interface. It includes the procedures for activating and
configuring GSS devices and for changing the primary and standby GSSM roles
in the GSS network.
This chapter contains the following major sections:
• Logging Into the Primary GSSM Graphical User Interface
• Logging Into the GSS and Accessing the CNR GUI
• Activating and Modifying GSS Devices
• Logically Removing a GSS or Standby GSSM from the Network
OL-10410-01
• Configuring the Primary GSSM GUI
• Printing and Exporting GSSM Data
• Viewing Third-Party Software Versions
Cisco Global Site Selector Administration Guide
1-1
Chapter 1 Managing GSS Devices from the GUI
Logging Into the Primary GSSM Graphical User Interface
Logging Into the Primary GSSM Graphical User
Interface
After you configure and enable your primary GSSM, you may access the GUI.
The primary GSSM uses secure HTTP (HTTPS) to communicate with web
clients.
When you first log in to the primary GSSM GUI, use the system default
administrative account and password. After you access the primary GSSM GUI,
create and maintain additional user accounts and passwords using the user
administration features of the primary GSSM. See
Managing User Accounts, for more information about creating user accounts.
To log in to the primary GSSM GUI, perform the following steps:
1. Open your preferred Internet web browser application, such as Internet
Explorer or Netscape Navigator.
Chapter 3, Creating and
2. Enter the secure HTTP address of your GSSM in the address field. For
example, if your primary GSSM is named gssm1.example.com, enter the
following to display the primary GSSM login dialog box and to access the
GUI:
https://gssm1.example.com
Note If you cannot locate the primary GSSM DNS name, be aware that the GSS
network uses secure connections and that the address of the GSSM
includes https:// (HTTP over SSL) instead of the more common http://.
3. Click Ye s at the prompt to accept (trust) and install the signed certificate from
Cisco Systems.
To avoid approving the signed certificate every time you log in to the primary
GSSM, accept the certificate from Cisco Systems, Inc. For instructions on
trusting certificates from a particular owner or website, refer to the online
help included with your browser.
4. Install the signed certificate as follows:
–
If you are using Internet Explorer—In the Security Alert dialog box,
click View Certificate, choose the Install Certificate option, and follow
the prompts of the Certificate Manager Import Wizard. Proceed to Step 5.
Cisco Global Site Selector Administration Guide
1-2
OL-10410-01
Chapter 1 Managing GSS Devices from the GUI
–
If you are using Netscape—In the New Site Certificate dialog box, click
Next and follow the prompts of the New Site Certificate Wizard. Proceed
to Step 5.
5. At the primary GSSM login window, enter your username and password in
the fields provided, and then click Login (see
time logging n to the GSSM, use the default account name (admin) and
password (default) to access the GUI.
The Primary GSSM Welcome page (see Figure 1-2) appears. See the Cisco
Global Site Selector GUI-based Global Server Load-Balancing
Configuration Guide for information about navigating through the primary
GSSM GUI.
Figure 1-1 Primary GSSM GUI Login Window
Logging Into the Primary GSSM Graphical User Interface
Figure 1-1). If this is your first
OL-10410-01
Cisco Global Site Selector Administration Guide
1-3
Logging Into the GSS and Accessing the CNR GUI
Figure 1-2 Primary GSSM Welcome Window
Chapter 1 Managing GSS Devices from the GUI
6. Log out of a primary GSSM GUI session by clicking Logout in the upper
right of the window.
The browser confirms that you want to log out of the primary GSSM GUI
session.
7. Click OK to confirm the logout (or Cancel).
When you click OK, the primary GSSM logs you out of the session and
redisplays the Primary GSSM GUI Login window (see
Figure 1-1).
Logging Into the GSS and Accessing the CNR GUI
You can extend the capabilities of GSS by using the Cisco Network Registrar
(CNR). CNR is purchased as a separate license add-on and involves upgrading the
existing GSS software license. For more information about obtaining, installing,
and activating a CNR license, see
Chapter 2, Managing the GSS from the CLI.
Cisco Global Site Selector Administration Guide
1-4
OL-10410-01
Chapter 1 Managing GSS Devices from the GUI
After you install and activate CNR, you access the CNR GUI by performing the
following steps:
1. Open your preferred Internet web browser application, such as Internet
Explorer or Netscape Navigator.
2. Enter the secure HTTP address of your GSS in the address field as follows:
http:// gss-machine:8080
where gss-machine is a resolvable name, such as gss-example.cisco.com or
the IP address of that machine. For instance, each of the following can serve
as valid addresses:
http://gss-example.cisco.com:8080
or
http://16.1.1.114:8080
The Network Registrar login page (see Figure 1-3) appears.
Logging Into the GSS and Accessing the CNR GUI
Figure 1-3 Network Registrar Login Window
OL-10410-01
Cisco Global Site Selector Administration Guide
1-5
Chapter 1 Managing GSS Devices from the GUI
Activating and Modifying GSS Devices
3. At the Network Registrar login window, enter your username and password
in the fields provided, and then click Login.
See the Cisco CNS Network Registrar User’s Guide for information on
configuring CNR using its Web-based user interface (Web UI).
Activating and Modifying GSS Devices
Activate your GSS devices from the primary GSSM GUI to add those devices to
your GSS network. You also use the primary GSSM GUI to remove a
non-functioning standby GSSM or GSS device from your network.
This section contains the following procedures:
• Activating GSS Devices from the Primary GSSM
• Modifying GSS Device Name and Location
• Deleting GSS Devices
Activating GSS Devices from the Primary GSSM
After you configure your GSS devices from the CLI to function as a standby
GSSM or as a GSS, activate those devices from the primary GSSM GUI so they
can receive and process user requests.
To activate a GSS or a standby GSSM from the primary GSSM GUI, perform the
following steps:
1. Click the Resources tab.
2. Click the Global Site Selectors navigation link. The Global Site Selectors list
page appears (see
“Online” status. The GSS devices requiring activation appear with an
“Inactive” status.
Figure 1-4). All active GSS devices appear with an
Cisco Global Site Selector Administration Guide
1-6
OL-10410-01
Chapter 1 Managing GSS Devices from the GUI
Figure 1-4 Global Site Selectors List Page—Inactive Status
Activating and Modifying GSS Devices
OL-10410-01
3. Click the Modify GSS icon for the first GSS device to activate. The
Modifying GSS details page appears (see
Cisco Global Site Selector Administration Guide
Figure 1-5).
1-7
Activating and Modifying GSS Devices
Figure 1-5 Modifying GSS Details Page
Chapter 1 Managing GSS Devices from the GUI
1-8
4. Check the Activate check box. This check box does not appear in the
Modifying GSS details page once the GSS device has been activated.
5. Click the Submit button, which returns you to the Global Site Selectors list
page (see
Figure 1-6). The status of the active GSS device is “Online.”
If the device is functioning properly and network connectivity is good
between the device and the primary GSSM, the status of the device changes
to “Online” within approximately 30 seconds.
Note The device status remains “Inactive” if the device is not functioning
properly or if there are problems with network connectivity. If this occurs,
power cycle the GSS device, check your network connections, and then
repeat this procedure. If you still cannot activate the GSS device, contact
Cisco TAC.
Cisco Global Site Selector Administration Guide
OL-10410-01
Chapter 1 Managing GSS Devices from the GUI
Figure 1-6 Global Site Selectors List Page—Active Status
Activating and Modifying GSS Devices
6. Repeat Steps 1 through 5 for each inactive GSS or standby GSSM.
Modifying GSS Device Name and Location
You can modify the name and location of any of your GSS devices using the
primary GSSM GUI. To modify other network information such as the hostname,
IP
address, or role, you must access the CLI on that GSS device (see the Cisco
Global Site Selector Getting Started Guide).
To modify the name and location of a GSS device from the primary GSSM GUI,
perform the following steps:
1. Click the Resources tab.
2. Click the Global Site Selectors navigation link. The Global Site Selectors list
page appears (see
“Online” status. The GSS devices requiring activation appear with an
“Inactive” status.
OL-10410-01
Figure 1-4). All active GSS devices appear with an
Cisco Global Site Selector Administration Guide
1-9
Activating and Modifying GSS Devices
3. Click the Modify GSS icon for the first GSS to activate. The Modifying GSS
details page appears (see
4. In the Global Site Selector Name field, enter a new name for the device. You
use the device name to easily distinguish one GSS device from another in the
primary GSSM list pages, where many devices may appear together.
5. From the Location drop-down list, choose a new device location.
6. Click Submit to save your changes, and return to the Global Site Selector list
page.
Deleting GSS Devices
Deleting a GSS device such as a GSS or a standby GSSM allows you to remove
the nonfunctioning device from your network or reconfigure and then reactivate a
GSS device. With the exception of the primary GSSM, you can delete GSS
devices from your network through the primary GSSM GUI.
Chapter 1 Managing GSS Devices from the GUI
Figure 1-5).
To delete a GSS device from the primary GSSM GUI, perform the following
steps:
1. Click the Resources tab.
2. Click the Global Site Selectors navigation link. The Global Site Selectors list
page appears.
3. Click the Modify GSS icon located to the left of the GSS device you want to
delete. The Modifying GSS details page appears.
4. Click the Delete icon in the upper right corner of the page. The GSS software
prompts you to confirm your decision to delete the GSS device.
5. Click OK to confirm your decision and return to the Global Site Selectors list
page. The deleted device is removed from the list.
To reconfigure the GSS device, see the Cisco Global Site Selector Getting Started
Guide.
Cisco Global Site Selector Administration Guide
1-10
OL-10410-01
Chapter 1 Managing GSS Devices from the GUI
Logically Removing a GSS or Standby GSSM from the Network
Logically Removing a GSS or Standby GSSM from
the Network
This section describes the steps to logically remove a GSS or standby GSSM
device from your network. You may need to logically remove a GSS from your
network when you perform the following tasks:
• Move a GSS device between GSS networks
• Physically remove or replace a GSS or standby GSSM
• Send the GSS or standby GSSM out for repair or replacement
Note Do not logically remove the primary GSSM from the GSS network. If you need
to take the primary GSSM offline for either maintenance or repair, temporarily
switch the roles of the primary and standby GSSMs as outlined in the
the GSSM Role in the GSS Network” section of Chapter 2, Managing the GSS
from the CLI.
“Changing
The first four steps in this procedure assume that the GSS or standby GSSM is
operational. If that is not the case, proceed directly to Step 5.
To logically remove a GSS or standby GSSM from the network, perform the
following steps:
1. Log in to the CLI and enable privileged EXEC mode.
gss1.example.com> enable
gss1.example.com#
2. Back up the startup configuration file on the GSS or standby GSSM device
by entering the following command:
gss1.example.com# copy startup-config disk configfile
3. Stop the GSS software running on the GSS by entering the following
command:
gss1.example.com# gss stop
4. Disable the GSSM or GSS by entering the following command:
gss1.example.com# gss disable
gss1.example.com# shutdown
OL-10410-01
Cisco Global Site Selector Administration Guide
1-11
Logically Removing a GSS or Standby GSSM from the Network
The gss disable command removes the existing configuration and returns the
GSS device to an initial state, which includes deleting the GSSM database
from the GSS device and removing all configured DNS rules and keepalives.
If you intend to power down the GSS device, you should also enter the
shutdown command.
5. Logically remove a GSS or a standby GSSM from the network by accessing
the primary GSSM graphical user interface and clicking the Resources tab.
6. Click the Global Site Selectors navigation link. The Global Site Selectors list
page appears.
7. Click the Modify GSS icon located to the left of the GSS device that you want
to delete. The Modifying GSS details page appears.
8. Click the Delete icon in the upper right corner of the page. The GSS software
prompts you to confirm your decision to delete the GSS device.
Chapter 1 Managing GSS Devices from the GUI
9. Click OK to confirm your decision and return to the Global Site Selectors list
page. The deleted device is no longer on the list.
For details on physically removing or replacing a GSS from your network, refer
to the Cisco Global Site Selector Hardware Installation Guide.
To add the removed GSS or standby GSSM back into the GSS network, follow the
procedures outlined in the Cisco Global Site Selector Getting Started Guide. After
you configure the GSS or standby GSSM, you may reload the backup copy of the
GSS device startup configuration settings (see the
“Saving the startup-config and
running-config Files” section in Chapter 2, Managing the GSS from the CLI).
Cisco Global Site Selector Administration Guide
1-12
OL-10410-01
Loading...