This section provides reference configuration diagrams and connectivity information for each reference configuration that will assist you in designing and connecting your N1 System Manager equipment.
Other configurations are possible, such as using separate switches for each network. You can implement your network using any combination of VLANs and switches. Each network, whether management, provisioning or data, should be assigned to separate VLANs.
In each of the following reference configurations, corporate access is shown as a connection to the management server. Alternatively, corporate access to the N1 System Manager can be provided through a switch instead of the management server.
When designing a network, keep the following information in mind:
Configuring separate management, provisioning, and data networks is the best practice
Separate networks provide the highest security and the lowest number of points of failure
The data center DHCP service can be used to assign IP addresses to provisioned servers
The management server DHCP service does not provide DHCP services for the data network. If you plan to dynamically configure IP services on the data network, you must provide an external DHCP server for the data network. You must not have another DHCP server on the same provisioning network.
You might need to install additional NICs in the management server and some provisionable servers to support this configuration
The following list summarizes the connectivity requirements for the separate management, provisioning, and data networks configuration.
Management Server
The management server should provide connectivity to the management network, provisioning network, and corporate network as follows:
ETH0 connects the management server to the corporate network to provide external access to the management server. The management server ETH0 IP address, netmask, and gateway should be configured to meet your corporate environment connectivity requirements. DNS configuration is performed during the N1 System Manager configuration process. ETH0 should be a 1-Gbit NIC interface.
ETH1 connects the management server to the provisioning network and should be on the same switch and network as the ETH0 connections of the provisionable servers. The management server ETH1 IP address, netmask, and gateway can be configured to support hundreds of provisionable servers. No devices other than the management server and the provisionable servers should reside on the provisioning network. ETH1 should be a 1-Gbit NIC interface.
ETH2 connects the management server to the management network and should be on the same switch and network as the management port connections of the provisionable servers. The management server connection is not required to be on the same switch as the management port connections of the provisionable servers as long as connectivity to the provisionable servers management port is provided. The management server ETH2 IP address, netmask, and gateway should be configured to enable connectivity to the provisionable server's management port IP addresses. ETH2 should be a 100-megabit NIC interface.
The management server DHCP service allocates IP addresses to the provisionable servers for loading operating systems.
The management server mail service enables ALOM architecture provisionable servers to send hardware monitoring information to the N1 System Manager over the management network.
Provisionable Server
Each provisionable server should provide connectivity to the management network, provisioning network, and data network as follows:
The management port connects the provisionable server to the management network and should be on the same switch and network as the ETH2 connection of the management server. The provisionable server management port connection is not required to be on the same switch as the ETH2 connection of the management server as long as connectivity to the management server ETH2 port is provided.
The management port should be a 100-megabit connection.
ETH0 connects the provisionable server to the provisioning network and must be on the same switch and network as the ETH1 connection of the management server.
ETH0 should be a 1-Gbyte connection.
ETH1 connects the provisionable server to the data network through the switch to provide external corporate network access to the provisionable server.
ETH1 should be a 1-Gbyte connection.
For this configuration:
An additional NIC does not need to be installed on the management server
The combined management and provisioning network reduces system and network security
The data center DHCP service can be used to assign IP addresses to provisioned servers
The management server DHCP service does not provide DHCP services for the data network. If you plan to dynamically configure IP services on the data network, you must provide an external DHCP server for the data network. You must not have another DHCP server on the management and provisioning network.
The statically-assigned management IP addresses and the dynamically assigned IP addresses used during OS provisioning are part of the same network. The N1 System Manager does not manage IP addresses. You must ensure that the IP addresses used during provisioning do not conflict with the management network IP addresses.
The following list summarizes the connectivity requirements for the combined management and provisioning network and the separate data network configuration.
Management Server
The management server should provide connectivity to the management and provisioning network as follows:
ETH0 connects the management server to the corporate network to provide external access to the management server. The management server ETH0 IP address, netmask, and gateway should be configured to meet your corporate environment connectivity requirements. DNS configuration is performed during the N1 System Manager configuration process.
ETH0 should be a 1-Gbit NIC interface.
ETH1 connects the management server to the management and provisioning network and should be on the same switch and network as the MGMT and ETH0 connections of the provisionable servers. The management server ETH1 IP address, netmask, and gateway can be configured to support hundreds of provisionable servers. No devices other than the management server and the provisionable servers should reside on the management and provisioning network.
The management server ETH1 connection is not required to be on the same switch as the management port connections of the provisionable servers as long as connectivity to the provisionable server's management port is provided. The management server ETH1 IP address, netmask, and gateway should be configured to enable connectivity to the provisionable server's management port IP addresses.
ETH1 should be a 1-Gbit NIC interface.
The management server DHCP service allocates IP addresses to the provisionable servers for loading operating systems.
The management server mail service enables ALOM architecture provisionable servers to send hardware monitoring information to the N1 System Manager over the management network.
Provisionable Server
Each provisionable server should provide connectivity to the management and provisioning network and the separate data network as follows:
The management port connects the provisionable server to the management and provisioning network and should be on the same network as the ETH1 connection of the management server. The provisionable server management port connection is not required to be on the same switch as the ETH1 connection of the management server as long as connectivity to the management server ETH1 port is provided.
The management port should be a 100-megabit connection.
ETH0 connects the provisionable server to the management and provisioning network and must be on the same switch and network as the ETH1 connection of the management server.
ETH0 should be a 1-Gbyte connection.
ETH1 connects the provisionable server to the data network through the switch to provide external corporate network access to the provisionable server.
ETH1 should be a 1-Gbyte connection.
For this configuration:
The combined provisioning and data network reduces system and network security
The data network must use the N1 System Manager DHCP service
The N1 System Manager DHCP service must be the only DHCP service on the data network.
The following list summarizes the connectivity requirements for the combined data and provisioning network and the separate management network configuration.
Management Server
The management server should provide connectivity to the provisioning and data network and to the separate management network as follows:
ETH0 connects the management server to the corporate network to provide external access to the management server. The management server ETH0 IP address, netmask, and gateway should be configured to meet your corporate environment connectivity requirements. DNS configuration is performed during the N1 System Manager configuration process.
ETH0 should be a 1-Gbit NIC interface.
ETH1 connects the management server to the provisioning and data network and should be on the same switch and network as the ETH0 connections of the provisionable servers. The management server ETH1 IP address, netmask, and gateway can be configured to support hundreds of provisionable servers. No devices other than the management server and the provisionable servers should reside on the data and provisioning network.
ETH1 should be a 1–Gbit NIC interface.
ETH2 connects the management server to the management network and should be on the same switch and network as the management port connections of the provisionable servers. The management server connection is not required to be on the same switch as the management port connections of the provisionable servers as long as connectivity to the provisionable server's management port is provided. The management server ETH2 IP address, netmask, and gateway should be configured to enable connectivity to the provisionable server's management port IP addresses. ETH2 should be a 100-megabit NIC interface.
The management server mail service enables ALOM architecture provisionable servers to send hardware monitoring information to the N1 System Manager over the management network.
The management server DHCP service allocates IP addresses to the provisionable servers for loading operating systems.
Provisionable Server
Each provisionable server should provide connectivity to the management network and to the combined data and provisioning network as follows:
The management port connects the provisionable server to the management network and should be on the same network as the ETH2 connection of the management server. The provisionable server management port connection is not required to be on the same switch as the ETH2 connection of the management server as long as connectivity to the management server ETH2 port is provided.
The management port should be a 100-megabit connection.
ETH0 connects the provisionable server to the data and provisioning network to enable deployment of an operating system to the provisionable server, and to provide external corporate network access to the provisionable server. The provisionable server ETH0 connection must be on the same network as the ETH1 connection of the management server.
ETH0 should be a 1-Gbyte connection.
For this configuration:
An additional NIC does not need to be installed on the management server
The combined management, provisioning, and data networks greatly reduces system and network security
The data network must use the N1 System Manager DHCP service
The N1 System Manager DHCP service must be the only DHCP service on the data network.
The following list summarizes the connectivity requirements for the separate management, provisioning, and data networks configuration.
Management Server
The management server should provide connectivity to the combined management, provisioning, and data network and to the corporate network as follows.
ETH0 connects the management server to the corporate network to provide external access to the management server. The management server ETH0 IP address, netmask, and gateway should be configured to meet your corporate environment connectivity requirements. DNS configuration is performed during the N1 System Manager configuration process. ETH0 should be a 1-Gbit NIC interface.
ETH1 connects the management server to the comnbined management, provisioning, and data network and should be on the same network as the MGMT and ETH0 connections of the provisionable servers. The management server ETH1 IP address, netmask, and gateway should be configured to enable connectivity to the provisionable servers management port IP addresses, and can be configured to support hundreds of provisionable servers. The management server connection is not required to be on the same switch as the management port connections of the provisionable servers as long as connectivity to the provisionable server's management port is provided. No devices other than the management server and the provisionable servers should reside on the provisioning network. ETH1 should be a 1-Gbit NIC interface.
The management server mail service enables ALOM architectureprovisionable servers to send hardware monitoring information to the N1 System Manager over the management network.
The management server DHCP service allocates IP addresses to the provisionable servers for loading operating systems.
Provisionable Server
Each provisionable server should provide connectivity to the management network, provisioning network and data network as follows:
The management port connects the provisionable server to the management, provisioning, and data network and should be on the same switch and network as the ETH1 connection of the management server. The provisionable server management port connection is not required to be on the same switch as the ETH1 connection of the management server as long as connectivity to the management server ETH1 port is provided.
The management port should be a 100-megabit connection.
ETH0 connects the provisionable server to the management, provisioning, and data network, and must be on the same network as the ETH1 connection of the management server. ETH0 also connects the provisionable server to the data network through the switch to provide external corporate network access to the provisionable server.
ETH0 should be a 1-Gbyte connection.