Networking

Module 5 Data ONTAP 7.3 Fundamentals

Module Objectives
By the end of this module, you should be able to: Identify the configuration of network settings and components in Data ONTAP Explain the main features and uses of naming services Explain the function of /etc/hosts, NIS, and DNS
Configure Data ONTAP for name resolution in /etc/nsswitch.conf Use host files to troubleshoot name resolution Explain routing tables in Data ONTAP Identify how a FAS system routes packets Define and create virtual interfaces (VIFs) Discuss the operation and method for routing in VLANs
2

2008 NetApp. All rights reserved.

Interface Configuration

2008 NetApp. All rights reserved.

Interface Configuration
Initial interface configuration
Configured by the setup command

After initial setup, you can create and modify the interface configuration using:
CLI with the ifconfig command FilerView

Interface configuration is stored in the /etc/rc file, which is read when the storage system boots

2008 NetApp. All rights reserved.

Interface Configuration (Cont.)

The storage system supports the following network types: Ethernet 10/100 Base-T 1G Ethernet 10G Ethernet (Data ONTAP 7.2 or later)
Storage systems with multiple-port Ethernet adapters use letters to identify each port.
Network Types Ethernet Letter e

Port Number 1 2 3 4

Letter a b c d

2008 NetApp. All rights reserved.

Interface Naming Example

Interface Type Ethernet Ethernet Ethernet Slot 0 (onboard) 0 (onboard) 3 Port 1 2 1 Interface Name e0a e0b e3a

Ethernet
Ethernet Ethernet

3
3 3

2
3 4

e3b
e3c e3d

2008 NetApp. All rights reserved.

Managing Interfaces: ifconfig

Network interface configuration parameters:
IP address Netmask address Broadcast address Media type and speed Maximum Transmission Unit (MTU) Flow control (Gigabit Ethernet II controller only) Up or down state

To display current status:

ifconfig -a

Interface configuration changes are not permanent until entered into the /etc/rc file
2008 NetApp. All rights reserved. 7

Managing Interfaces: FilerView

NOTE: Modifications made in FilerView are persistent in the /etc/rc file.

2008 NetApp. All rights reserved.

Managing Interfaces: FilerView (Cont.)

2008 NetApp. All rights reserved.

Managing Interfaces: CLI

To configure the current status:
ifconfig

To display permanent settings:

rdfile /etc/rc

To change permanent settings:

wrfile /etc/rc

Command overwrites the existing file Existing information can be cut and pasted Press Control-C to save changes and exit To activate changes to the /etc/rc file, reboot or issue source /etc/rc
10

2008 NetApp. All rights reserved.

Name Resolution

2008 NetApp. All rights reserved.

11

Host-Name Resolution
A storage system must be able to resolve host names to valid IP addresses. Host-name resolution is commonly used in:
Processing CIFS requests Processing NFS requests Authenticating RSH sessions Many other services

2008 NetApp. All rights reserved.

12

Host-Name Resolution (Cont.)

Data ONTAP stores and maintains host information in the following locations: /etc/hosts file DNS server Network Information Service (NIS) server
In host-name resolution: The /etc/nsswitch.conf file controls the order in which these three locations are checked. Data ONTAP stops checking locations when a valid IP address is returned.
NOTE: For convenience, you can use the Host Name Resolution Policy Wizard in FilerView.

2008 NetApp. All rights reserved.

13

/etc/hosts Configuration
Local IP and name resolution is provided by /etc/hosts. To modify /etc/hosts, use:
The rdfile and wrfile commands in CLI adminhost FilerView

2008 NetApp. All rights reserved.

14

/etc/hosts Configuration: FilerView

2008 NetApp. All rights reserved.

15

DNS Configuration
The DNS provides a centralized mechanism for host-name resolution in Windows and UNIX environments.
To configure the DNS: In FilerView, use the Host Name Resolution Policy Wizard In the CLI, use:
setup command options dns.* dns command
2008 NetApp. All rights reserved. 16

NIS
In UNIX environments, NIS provides: A centralized mechanism for host-name resolution User authentication
The storage system can participate as an NIS client or server. To configure NIS: In FilerView, use the Host Name Resolution Policy Wizard In the CLI, use:
setup command options nis.* nis command
2008 NetApp. All rights reserved. 17

Host Name Resolution Policy Wizard: FilerView

To ease configuration, use the FilerView Host Name Resolution Policy Wizard:

2008 NetApp. All rights reserved.

18

Host Resolution Policy Wizard: FilerView (Cont.)

Choose a resolution method:

2008 NetApp. All rights reserved.

19

Host Resolution Policy Wizard: FilerView (Cont.)

Provide DNS parameters:

2008 NetApp. All rights reserved.

20

Host Resolution Policy Wizard: FilerView (Cont.)

List DNS server address(es):

2008 NetApp. All rights reserved.

21

Host Resolution Policy Wizard: FilerView (Cont.)

Specify NIS information:

2008 NetApp. All rights reserved.

22

Host Resolution Policy Wizard: FilerView (Cont.)

Specify NIS Group Parameters:

2008 NetApp. All rights reserved.

23

Host Resolution Policy Wizard: FilerView (Cont.)

Specify the order for the Name Service Configuration:

2008 NetApp. All rights reserved.

24

Host Resolution Policy Wizard: FilerView (Cont.)

Commit the changes:

2008 NetApp. All rights reserved.

25

Route Resolution

2008 NetApp. All rights reserved.

26

Route Information
A route defines the direction to a network or host. To display the current routing table: In CLI, use netstat -r
system> netstat -r Routing tables Internet: Destination Gateway Flags default 66.166.149.161 UGS 66.166.149.160/2 link#1 UC 66.166.149.161 0:20:6f:10:25:7a UHL Refs 14 0

FilerView

2008 NetApp. All rights reserved.

27

The netstat Command

Use the netstat r command to view or change the network routing tables Use the netstat nr command to view or change the network routing tables with IP addresses (instead of name resolution) Use the netstat rs command to view or display the per protocol statistics

2008 NetApp. All rights reserved.

28

The route Command

Use the route -s command to show routing tables Use the route -f command to flush all gateway entries in the routing table Use the route ns command to view network routing tables with IP addresses (instead of name resolution)

2008 NetApp. All rights reserved.

29

Virtual Interfaces

2008 NetApp. All rights reserved.

30

Virtual Interfaces
Virtual interfaces (VIFs) allow: Trunking of one or more Ethernet interfaces Increased throughput to and from the storage system Virtual IP Ether Channel Switch
Load Balancing

VIFs can be configured as: Single-mode trunks Multimode trunks

2008 NetApp. All rights reserved. 31

Single-Mode VIF
In single mode, only one interface is active. The other interface is on standby.

Provides failover capability

x
e0 e1

2008 NetApp. All rights reserved.

32

Multimode VIF
In multimode, all interfaces are active and share a MAC address.
Provides multiplex capability

e0 e1 e2

2008 NetApp. All rights reserved.

33

Second-Level VIF
Defining a virtual interface at this level provides resilience for a Quad NIC failure.

Switch X
Vif_XA Vif_YA

Switch Y
Super Vif_A

Vif_YB
Vif_XB Super Vif_B

Quad Quad

Quad Quad

Final step: Active-Active Switch and NIC failures are transparent to clients when communicating to system A through the Vif_A super virtual interface.

2008 NetApp. All rights reserved.

34

Load Balancing
Load balancing is supported for multimode VIFs only: IP-based (default) MAC-based Round-robin (not recommended)
Load balancing assumes an even distribution of IP addresses, such as the following:
e0 10.10.10.1 10.10.10.5 10.10.10.9 10.10.10.13 e1 10.10.10.2 10.10.10.6 10.10.10.10 10.10.10.14 e2 10.10.10.3 10.10.10.7 10.10.10.11 10.10.10.15 e3 10.10.10.4 10.10.10.8 10.10.10.12 10.10.10.16
35

2008 NetApp. All rights reserved.

Creating a VIF from the CLI: Single-level Example

The named virtual interface is treated as a single interface: ifconfig vif_name
Entries created on the command line are not permanent
system> vif create single SingVif1 e3a e3b system> ifconfig SingVif1 172.17.200.201 netmask 255.255.255.0 mediatype 100tx-fd up system> vif favor e3a system> ifconfig SingVif1 SingVif1:flags=1148043<UP,BROADCAST,RUNNING,MULTICAST,TC PCKSUM> mtu 1500 inet 172.17.200.201 netmask 0xffffff00 broadcast 172.17.200.255 ether 02:a0:98:03:28:8e (Disabled virtual interface)

2008 NetApp. All rights reserved.

36

Creating a VIF from the CLI: Multilevel Example

system> vif create multi multiVif2 e3a e3b e3c e3d system> ifconfig multiVif2 172.17.200.202 netmask 255.255.255.0 mediatype 100tx-fd up system> ifconfig multiVif2 multiVif2:flags=1148043<UP,BROADCAST,RUNNING,MULTICAST, TCPCKSUM> mtu 1500 inet 172.17.200.202 netmask 0xffffff00 broadcast 172.17.200.255 ether 02:a0:98:03:28:8e (Disabled virtual interface)

2008 NetApp. All rights reserved.

37

Creating a VIF from the CLI: Second-Level VIF Example

system> vif create multi multiVif1 e3a e3b system> vif create multi multiVif2 e3c e3d system> vif create single L2vif multiVif1 multiVif2 system> ifconfig L2vif 172.17.200.206 netmask 255.255.255.0 mediatype 100tx-fd up system> ifconfig L2vif L2vif:flags=1148043<UP,BROADCAST,RUNNING,MULTICAST,TCPC KSUM> mtu 1500 inet 172.17.200.206 netmask 0xffffff00 broadcast 172.17.200.255 ether 02:a0:98:03:28:8c (Disabled virtual interface)

2008 NetApp. All rights reserved.

38

vif Commands
vif create [single|multi] <vif_name> [-b [rr|ip|mac]] [<interface_list>] vif delete <vif_name> [interface_list] vif destroy <vif_name> vif add <vif_name> <interface_list> vif [favor|nofavor] <interface> vif status [<vif_name>] vif stat vif_name [interval]
2008 NetApp. All rights reserved. 39

Creating a VIF with FilerView

After the VIF is created, assign it an address using ifconfig.

2008 NetApp. All rights reserved.

40

Virtual LANs

2008 NetApp. All rights reserved.

41

Virtual LANs
Virtual LANs (VLANs) provide: Increased IP network security Optimized packet routing
VLAN 0 VLAN 1 0 1 2 VLAN 2 Floor 1

0 1 2

Floor 2

2008 NetApp. All rights reserved.

42

Creating a VLAN from the CLI

system> ifconfig e3b down system> vlan create e3b 10 vlan: e3b-10 has been created system> ifconfig e3b-10 172.17.200.201 netmask 255.255.255.0 mediatype 100tx-fd up system> ifconfig a e3b:flags=80908043<BROADCAST,RUNNING,MULTICAST,TCPCKSUM ,VLAN> mtu 1500 ether 00:a0:98:03:28:8f (auto-1000t-fd-up) flowcontrol full

2008 NetApp. All rights reserved.

43

vlan Commands
Use the following commands for VLANs:
vlan vlan vlan vlan vlan create g on <ifname> <vlanid > delete [-q] <ifname> <vlanid> add <ifname> <vlanid [vlanid ]> stat <ifname> <vlanid> modify g [on|off] <ifname>

Supported VLAN IDs are 14094

NOTE: VLAN ID 1 is used by a number of switch vendors.

VLANs over VIFs are supported Use the /etc/rc file to persist configurations during reboot

2008 NetApp. All rights reserved.

44

Module Summary
In this module, you should have learned to: Use the ifconfig command to configure interfaces Identify host-name resolution methods:
/etc/hosts file DNS NIS

Explain how a VIF is a single virtual interface created from multiple physical interfaces Identify trunking modes supported on the storage system:
Single modefailover Multimodeincreased bandwidth

Explain how VLANs increase IP network security by tagging specific packets with the appropriate VLAN ID
2008 NetApp. All rights reserved. 45

Exercise
Module 5: Networking Estimated Time: 45 minutes

Answers
Module 5: Networking

Check Your Understanding

Where can you set or change a host name locally on the storage system?
FilerView > Network > Manage Hosts File /etc/hosts

How do you configure host-name resolution for a storage system?

FilerView > Network > Host Name Resolution Modifying
/etc/hosts

DNS, NIS commands

/etc/nsswitch.conf
2008 NetApp. All rights reserved. 48

Check Your Understanding (Cont.)

What is the difference between single-mode and multimode trunks?
Single-modefailover Multimodeimproved bandwidth

What are the benefits of a VLAN?

Increased security Improved packet routing

2008 NetApp. All rights reserved.

49