Aparna Systems Installation Guide - cablelabs/snaps-boot GitHub Wiki

© Copyright 2018 Aparna Systems

SNAPS Boot on Aparna uCloud 4015

SNAPS from CableLabs consists of two steps - SNAPS Boot and SNAPS OpenStack to deploy OpenStack on bare metal nodes. These steps are adapted for use with Aparna Systems’ uCloud 4015, an ultra-converged cloud edge system. Details of this system can be found at Aparna’s website: www.aparnasystems.com.

SNAPS Boot is documented in this wiki and SNAPS OpenStack is provided in the companion wiki.

The first step involves preparing the host nodes (compute and controller nodes) by setting up a configuration node for PXE booting. This is called SNAPS-BOOT. Instructions for this step are provided at:

https://github.com/cablelabs/snaps-boot/blob/master/doc/source/install/install.md#4-installation-steps

Prerequisites

Hardware Configuration

Host Nodes (Controller and Compute Nodes)

SNAPS OpenStack requires a minimum of 3 nodes for a basic configuration – 1 Controller Node and 2 Compute Nodes each with 16GBytes of memory, 80+ GB hard disk, 2 mandatory and 1 optional network interfaces. These nodes must be network boot enabled and IPMI capable.

Minimum configuration is chosen to deploy OpenStack/Kolla/Pike on Aparna Systems’ µCloud 4015. All the nodes are Aparna OServ8 µServers with standard hardware – 64GBytes of memory and an Intel Broadwell D1541 CPU. One Fabric Module (non-HA configuration in 4015) is required which allows each µServer to have one 10G physical interface. As the SNAPS/OpenStack requires at least 2 network interfaces, SR-IOV functionality available in the D-1541 processor is utilized. Details of how this is accomplished is provided in the preparation of the nodes. These nodes are network boot enabled and are accessible via IPMI.

Configuration Node

According to SNAPS guide, a server machine with 64bit Intel AMD Architecture with 16GB RAM and 1 network interface is required. This machine must be able to reach the host nodes via IPMI. With Aparna Systems’ 4015 setup, an external server meeting the requirements of SNAPS is configured as shown in section 3.

Networking Setup

SNAPS OpenStack deployment requires 3 network interfaces – management, tenant and data. Tenant interface is an internal interface between the deployed nodes in the system and does not require an external connection from the Fabric Module to the external world. However, the other two interfaces, management and data, are required to be connected to the external world. Two 40G/10G ports of the Fabric Module will be connected (either in the breakout mode or straight connection) to an external switch which in turn lets the host nodes and the configuration node talk to the outside world.

Aparna SNAPS configuration compared with discrete node configuration

As shown in Figure 1, a typical discrete node implementation of OpenStack consists of controller node(s), compute node(s), storage node(s), the configuration node and switch(es) to connect these nodes. In addition, the interconnection between these nodes could get complicated by the number of nodes in the implementation.

Discrete Node Implementation

Figure 1 - Discrete Component Implementation (source - Mellanox)

As shown in Figure 2, Aparna SNAPS OpenStack implementation consists of one Aparna µCloud 4015 system with the required number of controller, compute and storage nodes (combining for a total of 15 µServers), all the associated network connections among these nodes are embedded in the system. The external components are the two switches – one for Fabric Module and PXE and one share site switch for OpenStack data and management interfaces.

Aparna SNAPS Implementation

Figure 2 - Aparna SNAPS Implementation Configuration

4015 – System Setup using an external server as a configuration node for SNAPS Boot

4015 – Preparation of configuration node

Installation/update of OS

Update to Ubuntu 16.04.0x Server edition as per the local network management guidelines.

Install Firefox ESR

Accessing the µServers from an external server requires Mozilla Firefox ESR version with Java Runtime version 8.

Remove the current version of Firefox that comes installed to reduce the conflicts/issues

apt remove firefox

Install the ESR version of Firefox and java8

echo "deb <http://ppa.launchpad.net/webupd8team/java/ubuntu> trusty main" | tee
/etc/apt/sources.list.d/webupd8team-java.list

echo "deb-src <http://ppa.launchpad.net/webupd8team/java/ubuntu> trusty main" |
tee -a /etc/apt/sources.list.d/webupd8team-java.list

echo oracle-java8-installer shared/accepted-oracle-license-v1-1 select true |
/usr/bin/debconf-set-selections

apt-key adv --keyserver hkp://keyserver.ubuntu.com:80 --recv-keys EEA14886

apt-get update

export DEBIAN_FRONTEND=noninteractive

sudo add-apt-repository ppa:dirk-computer42/c42-backport

apt-get install -y oracle-java8-installer

apt-get install -y iceweasel

Accessing the three servers from the web browser just installed is possible after enabling the IP Forwarding step on the Fabric Module (4.2.1)

After installing the browser – make sure to add the external BMC IP Addresses of the three servers to the exception list in the file at ~/.java/deployment/security/exception.sites. Below is an example

user@server109:~/.java/deployment/security$ cat exception.sites
https://192.168.3.202
https://192.168.3.203
https://192.168.3.204

4015 - Preparation of Fabric Module

Preparation of Fabric Module consists of 3 steps – a) Enable IP Forwarding b) Setup DHCP Relay c) Setting up of BMC Gateway for access by an external node. These are listed below.

Enable IP Forwarding

Enable IP Forwarding to IPv4 in the networking services

root@OcNOS:/# echo 1 > /proc/sys/net/ipv4/ip_forward

Update /etc/sysctl.conf file to enable Ipv4 IP Forwarding

# Uncomment the next line to enable packet forwarding for IPv4
net.ipv4.ip_forward=1

Add rules to iptables

root@OcNOS:~# iptables -t nat -A POSTROUTING -o eth0 -s 192.168.13.102 -j
SNAT --to-source 192.168.3.202
root@OcNOS:~# iptables -t nat -A PREROUTING -i eth0 -d 192.168.3.202 -j DNAT
--to-destination 192.168.13.102

Verify the rules exist in the iptables

root@OcNOS:~# iptables -t nat -L
Chain PREROUTING (policy ACCEPT)
target prot opt source   destination
DNAT   all  --  anywhere 192.168.3.202   to:192.168.13.102

Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain POSTROUTING (policy ACCEPT)
target prot opt source         destination
SNAT   all  --  192.168.13.102 anywhere     to:192.168.3.202

Install tool to make iptables persistent

apt install iptables-persistent

Save IP tables

iptables-save

Adding additional servers – add the following lines /etc/iptables/rules.ip4

-A PREROUTING -d 192.168.3.203/32 -i eth0 -j DNAT --to-destination
192.168.13.103
-A POSTROUTING -s 192.168.13.103/32 -o eth0 -j SNAT --to-source 192.168.3.203
-A PREROUTING -d 192.168.3.204/32 -i eth0 -j DNAT --to-destination
192.168.13.104
-A POSTROUTING -s 192.168.13.104/32 -o eth0 -j SNAT --to-source 192.168.3.204

Restore IP Tables

iptables-restore < /etc/iptables/rules.v4

Add external IP address of BMC address for Fabric module mgmt. port for IP Forwarding

ip addr add 192.168.3.202 dev eth0
ip addr add 192.168.3.203 dev eth0
ip addr add 192.168.3.204 dev eth0

Verify addresses are added

ip a

DHCP Relay Setup

This step allows the DHCP from µServers to be relayed to the DHCP server running on the configuration node.

Edit the /etc/default/isc-dhcp-relay file to allow the DHCP requests from µServers to be forwarded to the external configuration server

# What servers should the DHCP relay forward requests to?
#SERVERS="127.0.0.1"

# µServer’s dhcp requests will be forwarded to configuration server – external
server
SERVERS="192.168.3.109"

# On what interfaces should the DHCP relay (dhrelay) serve DHCP requests?
INTERFACES="eth0 eth1"
#INTERFACES="eth1"

# Additional options that are passed to the DHCP relay daemon?
OPTIONS="-D"

Ensure isc-dhcp-relay is running

root@OcNOS:/# systemctl start isc-dhcp-relay
root@OcNOS:/# systemctl status -l isc-dhcp-relay

● isc-dhcp-relay.service - LSB: DHCP relay
Loaded: loaded (/etc/init.d/isc-dhcp-relay)
Active: active (running) since Wed 2018-04-11 22:59:09 UTC; 2s ago
Process: 24029 ExecStart=/etc/init.d/isc-dhcp-relay start (code=exited,
status=0/SUCCESS)
CGroup: /system.slice/isc-dhcp-relay.service
└─24032 /usr/sbin/dhcrelay -q -D -i eth0 -i eth1 192.168.3.109

Apr 11 22:59:09 OcNOS systemd[1]: Started LSB: DHCP relay.

Update of BMC Gateway address of deployment nodes

This step allows the BMCs to be accessed from the external server by changing the BMC GW IP address

Ipmitool -H 192.168.13.103 -U ADMIN -P ADMIN lan set defgw ipaddr 192.168.13.97
(lower slot)

OR

Ipmitool -H 192.168.13.103 -U ADMIN -P ADMIN lan set defgw ipaddr 192.168.13.98
(upper slot)

Sample configuration

root@OcNOS:/# ipmitool -H 192.168.13.102 -U ADMIN -P ADMIN lan set 1 defgw
ipaddr 192.168.13.98
root@OcNOS:/# ipmitool -H 192.168.13.103 -U ADMIN -P ADMIN lan set 1 defgw
ipaddr 192.168.13.98
root@OcNOS:/# ipmitool -H 192.168.13.104 -U ADMIN -P ADMIN lan set 1 defgw
ipaddr 192.168.13.98

After this step, the BMCs of servers can be accessed from the configuration node by running the Firefox ESR browser and providing the address as added above, for example: http://192.168.3.202 for the server in slot 2.

4015 - Preparation of µServer nodes (controller and compute) for SNAPS PXE boot

Collection of MAC addresses of BMCs

Collection of Mac addresses of BMCs is optional as in Aparna system they are in a different subnet (.13) and can be managed with IP addresses. Hosts.yaml file has fields for the MAC addresses. These can be collected from the configuration node with the IPMITOOL with lan print. These will be used to fill in the hosts.yaml file later on.

user@snap-210:~$ sudo ipmitool -H 192.168.13.102 -U ADMIN -P ADMIN lan print
| grep "MAC Address"
MAC Address : e8:fd:90:00:00:95
user@snap-210:~$ sudo ipmitool -H 192.168.13.103 -U ADMIN -P ADMIN lan print
| grep "MAC Address"
MAC Address : e8:fd:90:00:00:8d
user@snap-210:~$ sudo ipmitool -H 192.168.13.104 -U ADMIN -P ADMIN lan print
| grep "MAC Address"
MAC Address : e8:fd:90:00:00:78

BIOS Settings

BIOS settings of any uServer can be changed from the iKVM console program from the Firefox browser accessing the server. For example, accessing the uServer in slot 2 at address 3.202 is done by providing the IP address 192.168.3.202 on the browser address bar – access using the local user/password provided according to the local networking guidelines.

SR-IOV Enable

Setup Utility -> Advanced -> Peripheral Configuration -> PCIe SR-IOV -> Enabled

Change to Legacy mode

Setup Utility -> Advanced -> H2O IPMI Configuration -> Boot Option Support
-> Enabled
Setup Utility -> Boot -> Boot Type -> Legacy
Setup Utility -> Boot -> Network Stack -> Enabled
Setup Utility -> Boot -> PXE Boot capability -> Legacy
Setup Utility -> Boot -> Add Boot Options -> Last
Setup Utility -> Boot -> Automatic Failover -> Disabled
Setup Utility -> Exit -> Exit Saving Changes
Yes

Make bootable disk the first drive in the list of Legacy Hard Drive List by pressing F6 and F5 keys (please use the Virtual Keyboard or change the Options/Hot Key settings to make F5 key different for Ctrl-Alt-Del)

Enable PXE Boot Capability to Legacy

Change the boot order to make sure slot 0000 or slot 0001 is the first in the network boot section depending on the Switch slot.

Change boot order

Boot order

Desired Boot order – bootable OS disk first and then network boot devices in the order required

Desired boot order

SNAPS Boot

Once the nodes are prepared for SNAPS-Boot, the process to boot these nodes follows the SNAPS Boot installation guide at:

https://github.com/cablelabs/snaps-boot/blob/master/doc/source/install/install.md

Download SNAPS Boot package from GIT

wget https://github.com/cablelabs/snaps-boot/archive/master.zip

Unzip master.zip – creates a snaps-boot-master directory

user@server109:~/snaps-boot-master/

SNAPS Installation Steps

Step 1 Download ubuntu16.04 server image

Place it in folder snaps-boot/packages/images/. Use this download link for ISO: http://releases.ubuntu.com/16.04/ubuntu-16.04.4-server-amd64.iso.

cd snaps-boot/
mkdir -p packages/images
cd packages/images
wget http://releases.ubuntu.com/16.04/ubuntu-16.04.4-server-amd64.iso

Step 2 Modification of hosts.yaml file

Go to directory snaps-boot-master/conf/pxe_cluster

Sample for one host.

bind_host:
-
ip: "192.168.60.171" DHCP Address given at PXE boot
mac: "e8:fd:90:00:00:a3" Host MAC Addresses – µServer or BIOS

Step 3 – Pre-requisites on configuration node

Go to directory snaps-boot-master/

Run PreRequisite.sh as shown below:

sudo ./scripts/PreRequisite.sh

If you see failuers or errors. Update your software, remove obsolete packages and reboot your server.

sudo apt-get update
sudo apt-get upgrade
sudo apt-get auto-remove
sudo reboot

SNAPS - Step 4 - Configure PXE and DHCP server.

sudo -i python $PWD/iaas_launch.py -f $PWD/conf/pxe_cluster/hosts.yaml -p

4015 – Step 4 addition - Update DHCP Configuration for DHCP Relay (for external config node only)

Add the DHCP Relay configuration parameters to dhcp.conf file

Edit - /etc/dhcp/dhcpd.conf to add the following lines before PXE booting the servers

subnet 192.168.3.0 netmask 255.255.255.0 {
# range 192.168.3.244 192.168.3.245;
}

4015 - PXE Boot the servers

The default iaas_launch.py with -b options reboots which resets the BMC GW address so please use the following commands to boot the servers instead of using the iaas_launch.py command.

During PXE boot, the disk parameters may need interaction to ensure proper drive is used for installation. Aparna uServer has 3 drive interfaces

Use the commands below to PXE boot the servers.

user@server109:~/snaps-boot-master$ ipmitool -H 192.168.3.202 -U ADMIN -P ADMIN
chassis bootdev pxe
Set Boot Device to pxe
user@server109:~/snaps-boot-master$ ipmitool -H 192.168.3.203 -U ADMIN -P ADMIN 
chassis bootdev pxe
Set Boot Device to pxe
user@server109:~/snaps-boot-master$ ipmitool -H 192.168.3.204 -U ADMIN -P ADMIN
chassis bootdev pxe

Set Boot Device to pxe

user@server109:~/snaps-boot-master$ ipmitool -H 192.168.3.202 -U ADMIN -P ADMIN
chassis power reset
Chassis Power Control: Reset
user@server109:~/snaps-boot-master$ ipmitool -H 192.168.3.203 -U ADMIN -P ADMIN
chassis power reset
Chassis Power Control: Reset
user@server109:~/snaps-boot-master$ ipmitool -H 192.168.3.204 -U ADMIN -P ADMIN
chassis power reset
Chassis Power Control: Reset

After the boot, all the servers can be accessed via Firefox/iKVM console and they look as below:

Server console