This is the multi-page printable view of this section. Click here to print.

Return to the regular view of this page.

Configuring Network Settings

Describes the procedure to configure the network settings

On the Network Settings screen, you can configure the network details for the appliance. The following table explains the different settings that can be configured.

Information in the following table is specific to the Web UI. For information on the same features and configuring them in the CLI, refer here.

SettingDetailsHow to configure/change
HostnameThe hostname is a unique name for a system or a node in a network.Click Apply on the Web UI or change the hostname of the appliance from the Network Settings screen in the CLI Manager.
Management IPThe management IP, which is the IP address of the appliance, is defined through CLI Manager.Select Blink to identify the interface. This will cause a LED on the NIC to blink and then click Change.
Default RouteThe default route is an optional destination for all network traffic that does not belong to the LAN segment. For example, the IP address of your LAN router in the IP address format is 172.16.8.12. It is required only if the appliance is on a different subnet than the Appliance Web Interface.Click Apply to set the default route.
DomainThe appliance domain name specified during appliance installation.You can change it by specifying a new name and clicking Apply.
Search DomainsThe appliance can belong to one domain and search an additional three domains.You can add them using Add button.
Domain Name ServersIf your appliance uses domain names and IP addresses, then you must configure a domain name server (DNS) to help resolve Internet name addresses. The domain name should be for your local network, like Protegrity.com or math.mit.edu and the name servers should be IP addresses. The appliance can use up to three DNS servers for name resolving. Once you have configured a DNS, the system can be managed using an SSH connection.You can add them using Add button, and remove them using Remove. You can specify them using Apply button.

1 - Managing Network Interfaces

Describes the procedure to manage the network interfaces

Using Settings > Network > Network Settings, you can view appliance network interfaces names and addresses and add them from the Interfaces page.

Network Interfaces page

Changes to IP addresses

Changes to IP addresses are immediate. Changes to the management IP (on ethMNG), while connected via SSH or the Appliance Web Interface, causes the session to disconnect.

Assigning an Address to an Interface

Perform the following steps to assign an address to an interface.

  1. Navigate to Settings > Network.
  2. Click Network Settings.
    The Interfaces page appears.
  3. Identify the interface on the appliance by clicking Blink for the interface you want to identify.
    Select a LED on the NIC that blinks to indicate that interface.
  4. In the Interface row, type the address and Net mask of the interface, and then click Add.

Assigning an Address to an Interface Using Web UI

Perform the following steps to assign an address to an interface.

  1. In the Web UI, navigate to Settings > Network > Network Settings.
    The Network Settings page appears.
  2. In the Network Interfaces area, select Add New IP in the Gateway column.
    Ensure that the IP address for the NIC is added.
  3. Enter the IP address of the default gateway and select OK.
    The default gateway for the interface is added.

2 - NIC Bonding

Describes the procedure to manage the NIC interfaces

The Network Interface Card (NIC) is a device through which appliances, such as ESA or DSG, on a network connect to each other. If the NIC stops functioning or is under maintenance, the connection is interrupted, and the appliance is unreachable. To mitigate the issues caused by the failure of a single network card, Protegrity leverages the NIC bonding feature for network redundancy and fault tolerance. In NIC bonding, multiple NICs are configured on a single appliance. You then bind the NICs to increase network redundancy. NIC bonding ensures that if one NIC fails, the requests are routed to the other bonded NICs. Thus, failure of a NIC does not affect the operation of the appliance. You can bond the configured NICs using different bonding modes.

Bonding Modes

The bonding modes determine how traffic is routed across the NICs. The MII monitoring (MIIMON) is a link monitoring feature that is used for inspecting the failure of NICs added to the appliance. The frequency of monitoring is 100 milliseconds. The following modes are available to bind NICs together:

  • Mode 0/Balance Round Robin
  • Mode 1/Active-backup
  • Mode 2/Exclusive OR
  • Mode 3/Broadcast
  • Mode 4/Dynamic Link Aggregation
  • Mode 5/Adaptive Transmit Load Balancing
  • Mode 6/Adaptive Load Balancing

The following two bonding modes are supported for appliances:

  • Mode 1/Active-backup policy: In this mode, multiple NICs, which are slaves, are configured on an appliance. However, only one slave is active at a time. The slave that accepts the requests is active and the other slaves are set as standby. When the active NIC stops functioning, the next available slave is set as active.
  • Mode 6/Adaptive load balancing: In this mode, multiple NICs are configured on an appliance. All the NICs are active simultaneously. The traffic is distributed sequentially across all the NICs in a round-robin method. If a NIC is added or removed from the appliance, the traffic is redistributed accordingly among the available NICs. The incoming and outgoing traffic is load balanced and the MAC address of the actual NIC receives the request. The throughput achieved in this mode is high as compared to Mode 1/Active-backup policy.

Prerequisites

Ensure that you complete the following pre-requisites when binding interfaces:

  • The IP address is assigned only to the NIC on which the bond is initiated. You must not assign an IP address to the other NICs.
  • The NIC is not configured on an HA setup.
  • The NICs are on the same network.

Creating a Bond

The following procedure describes the steps to create a bond between NICs. For more information about the bonding nodes, refer here.

Ensure that the IP address of the slave nodes are static.

Perform the following steps to create a bond.

  1. On the Web UI, navigate to Settings > Network > Network Settings.
    The Network Settings screen appears.

  2. Under the Network Interfaces area, click Create Bond corresponding to the interface on which you want to initiate the bond.
    The following screen appears.

NIC Creating a Bond

  1. Ensure that the IP address is assigned to the interface on which you want to initiate the bond.

  2. Select the following modes from the drop-down list:

    • Active-backup policy
    • Adaptive Load Balancing
  3. Select the interfaces with which you want to create a bond.

  4. Select Establish Network Bonding.
    A confirmation message appears.

  5. Click OK.
    The bond is created, and the list appears on the Web UI.

Removing a Bond

Perform the following steps to remove a bond:

  1. On the Web UI, navigate to Settings > Network > Network Settings.
    The Network Settings screen appears with all the created bonds as shown in the following figure.

Remove NIC Bond

  1. Under the Network Interfaces area, click Remove Bond corresponding to the interface on which the bonding is created.
    A confirmation screen appears.

  2. Select OK.
    The bond is removed and the interfaces are visible on the IP/Network list.

Viewing a Bond

Using the DSG CLI Manager, you can view the bonds that are created between all the interfaces.

Perform the following steps to view a bond:

  1. On the DSG CLI Manager, navigate to Networking > Network Settings.
    The Network Configuration Information Settings screen appears.

  2. Navigate to Interface Bonding and select Edit.
    The Network Teaming screen displaying all the bonded interfaces appears as shown in the following figure.

View NIC Bond

Resetting the Bond

You can reset all the bonds that are created for an appliance. When you reset the bonds, all the bonds created are disabled. The slave NICs are reset to their initial state, where you can configure the network settings for them separately.

Perform the following steps to reset all the bonds:

  1. On the DSG CLI Manager, navigate to Networking > Network Settings.
    The Network Configuration Information Settings screen appears.

  2. Navigate to Interface Bonding and select Edit.
    The Network Teaming screen displaying all the bonded interfaces appears.

  3. Select Reset.
    The following screen appears.

Reset NIC Bond

  1. Select OK.
    The bonding for all the interfaces is removed.