Documente Academic
Documente Profesional
Documente Cultură
NCS 3.0
Confidential
Agenda
1 Overview and Background
How NCS fits in with the rest of the
world, what it does, and why
2 NETCONF and YANG
Why NETCONF was invented and how
it is different from previous
management protocols
Walk-through of the YANG modeling
language
3 System Setup
Installing NCS, packages, NETSIM
device simulator
4 Device Manager
Work with devices, synchronization,
templates, policies, etc
October 26, 2016
5 Service Manager
Work with high-level services
6 Alarm Manager
The alarm model and how to work
with alarms
7 System Administration
Deeper topics about installation
choices, logging, trouble shooting,
high availability, clustering, backups,
disaster recovery, etc
8 NED Development
NED types, Yang models and Java
code
Confidential
Java VM
Confidential
Device
Candidate
Confidential
Running
start_trans_running
lock_candidate
lock_reset_candidate - This mode is used for devices that support the
candidate data and also allow direct writes to the running data store. This is
the default mode for Tail-f ConfD NETCONF agent. Since the running data
store is configurable, we must, prior to each configuration attempt, copy all
of running to the candidate.
startup - This mode is used for devices that have writable running, no
candidate but do support the startup data store. This is the typical mode for
Cisco like devices.
Running-only - This mode is used for extremely simple devices that only
support writable running.
> show status devices device lb0 state transaction-mode
Confidential
Confirmed-Commit ?
3) Commit
Device
October 26, 2016
Confidential
Device
6
Confidential
NCS starts
and reads schema
Phase 0
Phase 0U
Phase 1U
Phase 1
NCS
provides
Southbound
Service
Confidential
NCS
provides
Northbound
Service
Phase 2
Confidential
Managing NCS
Common management commands
ncs --status
ncs --version
ncs --reload
Reload packages at ncs start
--with-package-reload
export
NCS_RELOAD_PACKAGES=true
(At runtime: request packages
reload)
Confidential
10
Troubleshooting NCS
Figuring out what is going on
Check log files
ncs.log
ncs-java-vm.log
devel.log
ncs --status
Verbose flag: ncs -v
Confidential
11
Disaster Management
NCS fails to start
Environment problem
Configuration mode change
NCS corruption
Data corruption
Internal error
NCS runtime problem
Out of memory, file descriptors, disk
Internal error
Confidential
12
AAA integration
Authentication
Stored in CDB
PAM (no roles/groups)
External auth:
Authorization
Authorization NACM rules
Authorization external
callback function
Auditing
Send to syslog
Send to files
Send to application
Confidential
13
High Availability
VIP
NCS - Master
CDB
NCS - Slave
Replication
CDB
Control /
Notifications
CDB
HAFW
NCS - Slave
Confidential
14
NCS - Master
NCS - Slave
CDB
CDB
SEA
NCS - Slave
NCS - Slave
CDB
CDB
HAFW
Slave-slave replication
is possible
Confidential
15
NCS A
CDB
Dev
Dev
Dev
Cluster
Link
NCS B
SEA
Dev
Dev
Dev
CDB
Dev
Dev
Dev
Confidential
Dev
Dev
Dev
16
NCS HA Pair A
NCS - Master
CDB
NCS - Slave
CDB
Cluster
Link
NCS HA Pair B
SEA
NCS - Master
CDB
HAFW
Dev
Dev
Dev
NCS - Slave
CDB
HAFW
Dev
Dev
Dev
Dev
Dev
Dev
Confidential
Dev
Dev
Dev
17
Confidential
18
In-service move
Start slave NCS on new machine
Wait for database sync to complete
Force fail-over to new machine
Confidential
19
Confidential
20