Nortel Networks NN43001-315 User Manual

Nortel Communication Server 1000

Linux Platform Base and Applications Installation and Commissioning

Release: Release 5.5 Document Revision: 02.09

www.nortel.com

NN43001-315

Nortel Communication Server 1000 Release: Release 5.5 Publication: NN43001-315 Document release date: 29 October 2008

Sourced in Canada

LEGAL NOTICE While the information in this document is believed to be accurate and reliable, except as otherwise expressly agreed to in writing NORTEL PROVIDES THIS DOCUMENT "AS IS" WITHOUT WARRANTY OR CONDITION OF ANY KIND, EITHER EXPRESS OR IMPLIED. The information and/or products described in this document are subject to change without notice.

Nortel, the Nortel logo, the Globemark, SL-1, Meridian 1, and Succession are trademarks of Nortel Networks. All other trademarks are the property of their respective owners.

Contents

New in this Release 5

Features 5

Other changes 6

How to get help 9

Getting help from the Nortel Web site 9 Getting help over the telephone from a Nortel Solutions Center 9 Getting help from a specialist by using an Express Routing Code 10 Getting help through a Nortel distributor or reseller 10

Security hardening 5

Installation times 5 CLI commands 6 Upgrade procedure 6 Alarms 6 Screen captures 6 Firewall ports 6 Task flow diagrams 6

Revision history 7

Introduction 11

Subject 11 Linux base overview 12 Key features 12

Linux base and applications installation and upgrade task flow 13

Task flows for individual servers 13 Task flows for common combinations of servers 21 ECM Upgrade Procedures 28

Install Nortel Linux base 35

Prerequisites 35 Install the Linux base software on the IBM x306m and HP DL320 G4 servers 37

Upgrade Nortel Linux base 53

Prerequisites to upgrade Nortel Linux base 53

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Upgrading Nortel Linux base 54

Installation and configuration of applications on Linux base 69

Prerequisites to install and configure applications 70 Install the CS 1000 applications 70

Installing the NRS applications 71 Install the Element Manager applications 82 Configuration for Network Routing Service or Element Manager applications

in ECM 99

CS 1000 on Linux base 101

Linux Operating System and Distribution 101 Network and firewall 102 Software reliability 102 Linux Security Hardening 104 Patching 106 Software exceptions 109 User accounts and access control 109

Passwords 110 System upgrades 115 Logging 115 SNMP 115 Disaster recovery 116

Passthrough end user license agreement 121 COTS Servers 123

HP DL320 G4 server 123

HP DL320 G4 BIOS settings 126 IBM x306m server 131

IBM x306m BIOS settings 134

Nortel Linux base CLI commands 139 Network configuration for Secure File Transfer Protocol (SFTP)

data backup 143

Network configuration 143 SFTP logon 143 SFTP network configuration requirements 144

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

New in this Release

ATTENTION

Do not contact Red Hat for technical support on your Nortel version of the Linux base operating system. If technical support is required for the Nortel version of the Linux base operating system, contact Nortel technical support through your regular channels.

The following sections detail what’s new in Linux Platform Base and Applications Installation and Commissioning (NN43001-315) () for release

5.5.

• “Features” (page 5)

•

“Other changes” (page 6)

See the following sections for information about feature changes:

Security hardening

Features

See the following sections for information about feature changes:

Installation times

Installation times are added for the installation of the Nortel Linux base and for the applications. Installation times are also added for the Nortel Linux base upgrade and the applications upgrade. Installation times for these features can be viewed in the following sections:

• “Install the Linux base software on the IBM x306m and HP DL320 G4

servers” (page 37)

• “Upgrading Nortel Linux base” (page 54)

• “Install the CS 1000 applications” (page 70)

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

6 New in this Release

CLI commands

Several new CLI commands are added for Release 5.5. The CLI commands and a brief definition are listed in the following table:

• Table 11 "Nortel Linux base CLI commands" (page 141)

Upgrade procedure

A procedure is added to upgrade the Linux base and applications from Release 5.0 to 5.5. The procedure is shown in the following section:

•

Alarms

A listing of system alarm thresholds is added for Release 5.5. The thresholds can be viewed in the following table:

• Table 2 "Warning and Critical thresholds" (page 103)

Screen captures

The installation procedure for the Linux base contains a revised set of screen captures for Release 5.5. The procedure is shown in the following section:

“Upgrading Nortel Linux base” (page 54)

•

Firewall ports

A list of open firewall ports is included in Release 5.5. The list can be viewed in the following table:

•

Task ﬂow diagrams

Task flow diagrams for the installation and upgrade of the Linux base and applications have been added for Release 5.5. The task flow diagrams can be viewed in the chapter “Linux base and applications installation and

upgrade task flow” (page 13).

Other changes

See the following sections for information about changes that are not feature-related.

“Installing the Linux base on the IBM x306m server or HP DL320 G4”

(page 37)

Table 1 "Linux base open firewall ports" (page 102)

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Revision history

October 29, 2008 Standard 02.09. This document is

May 01, 2008 Standard 02.08. This document is

April 18, 2008 Standard 02.07. This document is

April 15, 2008 Standard 02.06. This document is

February 22, 2008 Standard 02.05. This document

Other changes 7

up-issued to include a note under Disaster Recovery.

up-issued to update information in the Upgrading Nortel Linux base procedures.

up-issued to add information to the procedure Installing the Primary Security Service and Network Routing Service and added ECM Upgrade Procedures 5.00 GA to 5.50.12 to Task Flow chapter.

up-issued to add lab trial information.

is up-issued to include references to host configuration scripts found

Enterprise Common Manager

in Fundamentals (NN43001-116) () .

February 4, 2008 Standard 02.04. This document

is up-issued to support changes in technical content, including the addition of task flow diagrams for the installation and upgrade of the Linux base and applications.

January 15, 2008 Standard 02.03. This document is

up-issued for changes in technical content. New screen captures have been included and an installation and upgrade task flow section has been added.

December 19, 2007 Standard 02.02. This document is

up-issued for changes in technical content.

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

8 New in this Release

December 7, 2007 Standard 02.01. This document

November 27, 2007 Standard 01.04. This document is

September 10, 2007 Standard 01.03. This document is

June 20, 2007 Standard 01.02. This document

May 30, 2007 Standard 01.01. This document

is up-issued to support Nortel Communication Server 1000 Release

5.5. This document contains new information on CLI commands, an upgrade procedure, firewall ports, and alarms. Screen captures for the Linux base installation procedure are updated.

up-issued for changes in technical content.

up-issued to address changes in technical content for release 5.0.

is up-issued to remove the Nortel Networks Confidential statement.

is issued to support Nortel Communication Server 1000 Release

5.0.

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

How to get help

This chapter explains how to get help for Nortel products and services.

Getting help from the Nortel Web site

The best way to get technical support for Nortel products is from the Nortel Technical Support Web site: www.nortel.com/support

This site provides quick access to software, documentation, bulletins, and tools to address issues with Nortel products. From this site, you can:

• download software, documentation, and product bulletins

•

search the Technical Support Web site and the Nortel Knowledge Base for answers to technical issues

•

open and manage technical support cases

Getting help over the telephone from a Nortel Solutions Center

If you do not find the information you require on the Nortel Technical Support Web site, and you have a Nortel support contract, you can also get help over the telephone from a Nortel Solutions Center.

In North America, call 1-800-4NORTEL (1-800-466-7835). Outside North America, go to the following Web site to obtain the

telephone number for your region:

ww.nortel.com/callus

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

10 How to get help

Getting help from a specialist by using an Express Routing Code

To access some Nortel Technical Solutions Centers, you can use an Express Routing Code (ERC) to quickly route your call to a specialist in your Nortel product or service. To locate the ERC for your product or service, go to:

ww.nortel.com/erc

Getting help through a Nortel distributor or reseller

If you purchased a service contract for your Nortel product from a distributor or authorized reseller, contact the technical support staff for that distributor or reseller.

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Introduction

ATTENTION

Linux Platform Base and Applications Installation and Commissioning (NN43001-315) () provides a description of the features of Nortel Linux

base and details on the installation and configuration of Nortel Linux base on commercial off-the-shelf (COTS) servers. This document also provides installation instructions for Nortel Linux applications.

Subject

This document describes the installation and configuration of Nortel Linux base on the HP DL320 G4 and IBM x306m COTS servers. The Linux base server platform supports the following Nortel Communication Server 1000 (CS 1000) application configurations:

• Primary Security Service and Network Routing Service

•

Backup Security Service and Network Routing Service

•

Network Routing Service

•

Primary Security Service and CS 1000 Element Manager

• Backup Security Service and CS 1000 Element Manager

• CS 1000 Element Manager

• Primary Security Service, Subscriber Manager, and CS 1000 Element

Manager

• Backup Security Service, Subscriber Manager, and CS 1000 Element

Manager

This document describes the upgrade and configuration of Nortel Linux base on the HP DL320 G4 and IBM x306m COTS servers.

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

12 Introduction

To view licensing information, see “ Passthrough end user license

agreement” (page 121).

Linux base overview

The Communication Server 1000 (CS 1000) Linux base system provides a Linux server platform for applications on a commercial off-the-shelf (COTS) Pentium server. The platform can support the new Session Initiation Protocol Network Redirect Server (SIP NRS) and Enterprise Common Manager (ECM) framework.

This system is supported on the HP DL320 G4 1u Pentium server and the IBM x306m 1u Pentium server.

Key features

Linux base provides features and enhancements in the following areas:

• Linux operating system and distribution

•

Firewall

•

Software reliability

•

Linux security hardening

•

Patching

•

User accounts and access control

•

Software installation and delivery

•

System upgrades

•

Debugging

•

Logging

•

Disaster recovery

• Network Time Protocol (NTP)

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Linux base and applications installation and upgrade task ﬂow

Linux Platform Base and Applications Installation and Commissioning (NN43001-315) () provides installation and upgrade information for the

Linux base and applications. You must follow the proper sequence of events to correctly install or upgrade the Linux base and applications. Use the task flow information in this chapter to determine the proper steps for the installation or upgrade of the Linux base and applications.

The task flows for Linux base and applications installation and upgrades are broken into two sections:

• Task flows to install or upgrade individual servers, as shown in “Task

flows for individual servers” (page 13).

• Task flows to install or upgrade commonly used combinations of

servers, as shown in “Task flows for common combinations of servers”

(page 21).

There is also a section for upgrading the ECM. See “ECM Upgrade

Procedures” (page 28).

Task ﬂows for individual servers

This section provides high-level task flows for the installation and upgrade of the Linux base and applications on commercial off-the-shelf (COTS) servers. Refer to the chapters “Install Nortel Linux base ” (page 35) and

“Installation and configuration of applications on Linux base” (page 69) for

specific installation instructions. Refer to the chapter “Upgrade Nortel Linux

base ” (page 53) for specific upgrade instructions.

For more information refer to the following NTPs, which are referenced in the task flow diagrams:

• Linux Platform Base and Applications Installation and Commissioning

(NN43001-315) ()

• Subscriber Manager Fundamentals (NN43001-120) ()

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

14 Linux base and applications installation and upgrade task flow

• Common Network Directory 2.2 Administration (NN43050-101) ()

• Network Routing Service Installation and Commissioning

(NN43001-564) ()

This section contains the following task flows:

• Figure 1 "Linux base and applications install for primary or backup

ECM server " (page 15)

• Figure 2 "Linux base and applications install for member server" (page

16)

• Figure 3 "Linux base and applications upgrade for primary or backup

ECM server with NRS" (page 17)

•

Figure 4 "Linux base and applications upgrade for primary or backup ECM server with EM " (page 18)

• Figure 5 "Linux base and applications upgrade for primary or backup

ECM server with EM and adding SM " (page 19)

• Figure 6 "Linux base and applications upgrade for member server "

(page 20)

The task flow diagrams contain the following abbreviations:

•

SM: Subscriber Manager

•

ECM: Enterprise Common Manager

•

EM: Element Manager

•

CND: Common Network Directory

•

NRS: Network Routing Service

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Task flows for individual servers 15

Figure 1 Linux base and applications install for primary or backup ECM server

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

16 Linux base and applications installation and upgrade task flow

Figure 2 Linux base and applications install for member server

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Task flows for individual servers 17

Figure 3 Linux base and applications upgrade for primary or backup ECM server with NRS

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

18 Linux base and applications installation and upgrade task flow

Figure 4 Linux base and applications upgrade for primary or backup ECM server with EM

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Task flows for individual servers 19

Figure 5 Linux base and applications upgrade for primary or backup ECM server with EM and adding SM

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

20 Linux base and applications installation and upgrade task flow

Figure 6 Linux base and applications upgrade for member server

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Task flows for common combinations of servers 21

Task ﬂows for common combinations of servers

This section provides high-level task flows for the installation and upgrade of common combinations of primary ECM servers, backup ECM servers, single ECM servers, and member servers. Refer to the chapters “Install

Nortel Linux base ” (page 35) and “Installation and configuration of applications on Linux base” (page 69) for specific installation instructions.

Refer to the chapter “Upgrade Nortel Linux base ” (page 53) for specific upgrade instructions.

For more information refer to the following NTPs, which are referenced in the task flow diagrams:

• Linux Platform Base and Applications Installation and Commissioning

(NN43001-315) ()

• Subscriber Manager Fundamentals (NN43001-120) ()

•

Enterprise Common Manager Fundamentals (NN43001-116) ()

• Element Manager System Reference—Administration (NN43001-632)

()

• Common Network Directory 2.2 Administration (NN43050-101) ()

This section contains the following task flows:

• Figure 7 "Linux base and applications install for primary server with

backup ECM server " (page 22)

• Figure 8 "Linux base and applications install for primary server with

backup ECM server and member servers " (page 23)

•

Figure 9 "Linux base and applications install for primary ECM server with member servers" (page 24)

•

Figure 10 "Linux base and applications upgrade for primary with backup ECM server " (page 25)

•

Figure 11 "Linux base and applications upgrade for primary server with backup ECM server and member servers " (page 26)

• Figure 12 "Linux base and applications upgrade for primary ECM

server with member servers " (page 27)

• Figure 13 "Subscriber Manager installation and configuration" (page

28)

The task flow diagrams contain the following abbreviations:

• SM: Subscriber Manager

• ECM: Enterprise Common Manager

• EM: Element Manager

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

22 Linux base and applications installation and upgrade task flow

• CND: Common Network Directory

• NRS: Network Routing Service

Figure 7 Linux base and applications install for primary server with backup ECM server

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Task flows for common combinations of servers 23

Figure 8 Linux base and applications install for primary server with backup ECM server and member servers

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

24 Linux base and applications installation and upgrade task flow

Figure 9 Linux base and applications install for primary ECM server with member servers

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Task flows for common combinations of servers 25

Figure 10 Linux base and applications upgrade for primary with backup ECM server

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

26 Linux base and applications installation and upgrade task flow

Figure 11 Linux base and applications upgrade for primary server with backup ECM server and member servers

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

Task flows for common combinations of servers 27

Figure 12 Linux base and applications upgrade for primary ECM server with member servers

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

28 Linux base and applications installation and upgrade task flow

Figure 13 Subscriber Manager installation and configuration

ECM Upgrade Procedures

The following describes the procedures for upgrading an Enterprise Common Manager (ECM) system from Rls 5.00 to Rls 5.50.

Nortel Communication Server 1000

Linux Platform Base and Applications Installation and Commissioning

NN43001-315 02.09

29 October 2008

ECM Upgrade Procedures 29

There are several procedures in this section. Perform the first procedure based on your system configuration:

•

“1a: Upgrade Primary server without Backup server and less than

three or no Member servers” (page 29)

•

“1b: Upgrade Primary server without Backup server and less than

three or no Member servers” (page 29)

•

“1c: Upgrade Primary server with Backup server and three or more

Member servers” (page 30)

Then perform one or both of the following procedures as applicable to your system configuration:

•

“Upgrade Backup ECM Security server” (page 31)

•

“Upgrade ECM Member server” (page 33)

This procedure describes upgrading the Primary ECM Security server from Rls 5.00 to Rls 5.50 in a configuration with no Backup ECM server and less than three or no Member servers associated with it.

1a: Upgrade Primary server without Backup server and less than three or no Member servers

Step Action

There are no prerequisites for this procedure.

1 Open a command line interface session to the Primary ECM

Security Server through the serial port with the nortel account.

2 Perform the “Upgrading Nortel Linux base ” (page 54) procedure. 3 Open a command line interface session to the Primary ECM

Security Server through the serial port with the nortel account.

4 Install the following patches onto the Primary ECM Security

server using the “Patching Operation” (page 106) procedure.

•

MPLR25520

• MPLR25521

--End--

This procedure describes upgrading the Primary ECM Security server from Rls 5.00 to Rls 5.50 in a configuration with a Backup ECM server and less than three or no Member servers associated with it.

1b: Upgrade Primary server without Backup server and less than three or no Member servers

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

30 Linux base and applications installation and upgrade task flow

Step Action

There are no prerequisites for this procedure.

1 Open a command line interface session to the Primary ECM

Security Server through the serial port with the nortel account.

2 Switch user to the root account by typing SU and press <enter>. 3 Enter the root user password when prompted. 4 Execute the following script:

/opt/nortel/isclient/setup_ssha.sh deconfig

5 If a Backup ECM Security server is present in the system, switch

user to the root account and execute the script

/opt/nortel/isclient/failOver.sh <FQDN of Primary ECM Security Server>

where <FQDN of Primary ECM Security Server> is set to the FQDN of the Primary ECM Security server.

6 Wait for two minutes after the command completes before

proceeding.

7 Switch user back to the nortel account by typing exit. 8 Perform the “Upgrading Nortel Linux base ” (page 54) procedure. 9 Open a command line interface session to the Primary ECM

Security Server through the serial port with the nortel account.

10 Install the following patches onto the Primary ECM Security

server using the “Patching Operation” (page 106) procedure.

• MPLR25520

• MPLR25521

--End--

This procedure describes upgrading the Primary ECM Security server from Rls 5.00 to Rls 5.50 in a configuration with a Backup ECM server and three or more Member servers associated with it.

1c: Upgrade Primary server with Backup server and three or more Member servers

Step Action

There are no prerequisites for this procedure.

1 Open a command line interface session to the Primary ECM

Security Server through the serial port with the nortel account.

2 Switch user to the root account by typing SU and press <enter>.

Linux Platform Base and Applications Installation and Commissioning

Nortel Communication Server 1000

NN43001-315 02.09

29 October 2008

+ 118 hidden pages