Create an Instance in Roving Edge Infrastructure and Compute Cloud@Customer

You can deploy SD-WAN on most applications by launching the instance from Oracle Cloud Marketplace. However, with Roving Edge Infrastructure and Compute Cloud@Customer, you must convert VT800 to UEFI boot first.

Tip:

Ensure you have a custom image available for your system. It's crucial to have a custom image as marketplace images typically cannot be edited to support UEFI boot.

To facilitate this process, follow these instructions:

Convert Disk Partitioning:
1. Switch to the root user using the command `sudo su -` to gain necessary permissions.
2. Convert the disk partitioning from MBR (Master Boot Record) to GPT (GUID Partition Table), which is required for UEFI boot.
3. Create space for the GPT BIOS by adjusting partition sizes. Unlike MBR, GPT requires space in two sectors at the beginning and end of the disk.
4. Identify the existing first partition and ensure there's space prior to it for the first GPT sector.
  
  Note:
  The last GPT sector may overlap with the existing last partition unless resized.
5. If needed, increase the size of the disk in the hypervisor. For instance, in OCI, increase the boot volume size using the console and then reboot the instance.
6. Rescan the disk to recognize the new size using the command: `echo "1" > /sys/class/block/sda/device`
7. Ensure that packages such as gpt, grub2, and efi are up-to-date by following the appropriate update procedures for your system.
Configure Grub2 Boot Loader:
1. Use the `gdisk` tool to manage GPT partitioning. Run `gdisk /dev/sda` to access disk management functionalities.
2. Define the first GPT BIOS sector within `gdisk`.
3. Adjust partition sizes as necessary to accommodate the new partitioning scheme.
4. Shrink the filesystem partition back to its original size to avoid data loss.
5. Write the partitioning changes and reformat using gdisk. Confirm the changes by typing w and y.
6. Refresh partition information using partprobe and verify changes using fdisk -l /dev/sda.
Create EFI Boot Partition:
1. Create a new partition for the EFI boot system using `gdisk`.
2. Reformat the newly created EFI partition as vfat using the command mkfs -t vfat -v /dev/disk/by-partlabel/EFI-system.
3. Ensure necessary EFI files are present by installing grub2-efi, grub2-efi-modules, and shim packages.
4. Generate the GRUB configuration file using grub2-mkconfig -o /boot/efi/EFI/redhat/grub.cfg.
5. Mount the EFI system partition and move EFI files to it.
6. Update the /etc/fstab file to ensure the EFI partition is mounted at boot time.
Configure Grub2 for EFI:
1. Install grub2 for EFI using the command grub2-install --target=x86_64-efi /dev/sda.
2. Manually create a menu entry for Talari in /boot/efi/EFI/redhat/grub.cfg.
3. Ensure proper configuration of the menu entry to reflect the changes made.
Reconfigure Hypervisor:
1. If necessary, reconfigure the hypervisor to use UEFI boot mode for the VM.
2. Start the VM and ensure it boots successfully using UEFI.
Troubleshoot:
1. If any issues arise during the process, use the BIOS command line to locate partitions holding kernel and initrd images.
2. Verify and adjust menu entries in the GRUB configuration file (/boot/efi/EFI/redhat/grub.cfg) and ensure that they are configured correctly for UEFI boot.

Convert VT800 to UEFI Boot

Convert VT800 to UEFI boot in place while ensuring a smooth transition and avoiding any potential issues.

After completing the customization of the image, the image is now ready for export. Follow these steps to export this image to create an instance on Roving Edge Infrastructure for SD-WAN:

Log in to the Roving Edge Infrastructure web console.
Navigate to Instances.
Click Create Instance.
Fill out the Create Compute Instance form. Include instance name, select the custom image and other instance details (shape, configure networking, ssh keys and so on).
Click Create.

Once created, your instance should be up and running with your custom image.

Verify SSH Access to SD-WAN Instance and Set a Password for HTTPS Access

After you successfully create your instance, you must verify SSH access to your SD-WAN Instance.

Creating a password for HTTPS access ensures you implement heightened security measures. Fortifying your system's defenses is critial to ensure robust protection against unauthorized access and potential threats. Follow these steps to verify your access and set up a password:

Run this command: ssh -i <privateKeyPath> talariuser@<mgt-public-ip>
Once you are logged in with SSH, set a password for talariuser.

Enter the following command: sudo passwd talariuser. This password is used for HTTPS access only and you can't use the password for SSH logins to the SD-WAN Instance. The following is an example:

talariuser@Talari-:~#
talariuser@Talari-:~#
talariuser@Talari-:~#
talariuser@Talari-:~#
talariuser@Talari-:~# sudo passwd talariuser
Changing password for user talariuser.
New password:
Retype new password:
passwd: all authentication tokens updated successfully.
talariuser@Talari-:~#
talariuser@Talari-:~#

After you've set up the password, exit the SD-WAN Instance CLI console.

Access the SD-WAN Instance Using HTTPS

Follow these steps to access the SD-WAN instance using HTTPS:

To access the SD-WAN host's web console you can tunnel HTTPS in SSH with the following command: ssh -i <privateKeyPath> talariuser@<mgt-public-ip>.
Open your web browser and go to https://<mgt-public-ip>.
Enter your log in credentials:
- Username: talariuser
- Password: Enter the password you created during the first SSH login.
When you log in to the Oracle SD-WAN Instance, your landing page will be One Touch Start, where you can upload the software and configuration packages for the SD-WAN Instance.

You have successfully deployed the Oracle SD-WAN Instance in Roving Edge Infrastructure. See the Oracle® SD-WAN Implementation Guide for instructions on configuration and deployment best practices, and installation of SD-WAN software and configuration package.