SD-WAN VeloCloud Solution Deployment / Configuration Guide
About
This document describes the steps to deploy and configure the VeloCloud solution.
Prerequisites
- An administrator-level account in SevOne NMS.
- SSH password for the support account.
- IP address of the PAS.
Installation Steps
SevOne NMS
The following steps apply to perform an installation from scratch of the VeloCloud solution on SevOne NMS.
If you are on VeloCloud version 7.0.2 or above, skip Steps 2, 3, 4, and 7 below.
- Using ssh, login to SevOne NMS appliance as
support.
$ ssh support@<SevOne NMS appliance IP address>
- Change directory to /config/collectors/sdwan/velocloud/on the NMS appliance
host.
$ cd /config/collectors/sdwan/velocloud/
- Download the following (latest) files from IBM Passport Advantage (https://www.ibm.com/software/passportadvantage/pao_download_software.html) via
Passport Advantage Online. However, if you are on a legacy / flexible SevOne contract and do
not have access to IBM Passport Advantage but have an active Support contract, please contact
IBM SevOne Support for the latest files.You must place <tar/zip> files in
/config/collectors/sdwan/velocloud directory.
- sdwan-velocloud-installation-v7.0.0-build.<###>.tgz
- sdwan-velocloud-installation-v7.0.0-build.<###>.tgz.sha256.txt
- signature-tools-<latest-version>-build.<latest>.tgz
- signature-tools-<latest-version>-build.<latest>.tgz.sha256.txt
- Execute the following commands to verify the checksum of the code signing tool before
extracting
it.
$ (cd /config/collectors/sdwan/velocloud && cat $(ls -Art signature-tools-*.tgz.sha256.txt | \ tail -n 1) | sha256sum --check) $ sudo tar xvfz $(ls -Art /config/collectors/sdwan/velocloud/signature-tools-*.tgz | \ tail -n 1) -C /
- Go to SevOne NMS
container.
$ sudo podman exec -it <nms_container_id_or_name> /bin/bash
- Change directory /config/collectors/sdwan/velocloud/on the NMS
pod.
$ cd /config/collectors/sdwan/velocloud/
- Verify the signature of Solutions .tgz.
files.
$ sh /usr/local/scripts/SevOne-validate-image -i $(ls -Art /config/collectors/sdwan/velocloud/sdwan-*.tgz | \ tail -n 1) -s $(ls -Art /config/collectors/sdwan/velocloud/sdwan-*.tgz.sha256.txt | tail -n 1)
- Extract the latest
build.
$ tar -xvf $(ls -Art /config/collectors/sdwan/velocloud/sdwan-*.tgz | tail -n 1) -C /config/collectors/sdwan/velocloud
You will see the following files in the folder.
- VeloCloudSDWAN.Certification.spk - it creates one device type VeloCloudSDWAN and 5 object types suffixed with (VeloCloud).
- Replace the file VeloCloudSDWAN.Certification.spk in the spk directory
/config/collectors/sdwan/velocloud/spk.
$ cp VeloCloudSDWAN.Certification.spk /config/collectors/sdwan/velocloud/spk
- Change directory to
/config/collectors/sdwan/velocloud/spk.
$ cd /config/collectors/sdwan/velocloud/spk
You will see the following files in the directory.
- VeloCloudSDWAN.MIBs.spk - it imports two VeloCloudSDWAN MIB files (VELOCLOUD-EDGE-MIB.mib and VELOCLOUD-MIB.mib).
- VeloCloudSDWAN.Certification.spk - it creates one device type VeloCloud SDWAN and 5 object types suffixed with (VeloCloud).
- VeloCloudSDWAN.DeviceGroups.spk - it creates 1 device group.
- VeloCloudSDWAN.ObjectGroups.spk - it creates 3 object group class (VeloCloud SDWAN) and 3 Object Groups underneath it.
- VeloCloudSDWAN.MetadataSchema.spk - it imports the metadata schema for VeloCloud SDWAN devices.
- VeloCloudSDWAN.Alert.Policies.spk - it imports 5 alert policies. All policies are imported as disabled by default.
- VeloCloudSDWAN.TopNViews.spk - it imports 22 TopN Report views.
- VeloCloudSDWAN-DI-OOTB-Reports.tar - it imports 1 SevOne Data Insight report and 3 Templates.
- Import the following .spk files in sequence.
- VeloCloudSDWAN
MIBs
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.MIBs.spk
- Device Type and Object
Types
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.Certification.spk
- Metadata
Schema
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.MetadataSchema.spk
- Device
Groups
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.DeviceGroups.spk
- Object
Groups
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.ObjectGroups.spk
- Alert
Policies
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.Alert.Policies.spk
The following is the list of alerts imported.
- VeloCloud SDWAN - WAN Link - Packet Loss
- VeloCloud SDWAN - WAN Link - Latency
- VeloCloud SDWAN - WAN Link - Jitter
- VeloCloud SDWAN - VCG Path - Latency
- VeloCloud SDWAN - VCG Path - Packet Loss
Important: All alerts are disabled by default.
- VeloCloudSDWAN
MIBs
Device Onboarding
To onboard VeloCloud devices in SevOne NMS, follow these steps.
- Enter the URL for the SevOne NMS appliance into your web browser to display the Login page. Enter your credentials on the login page and click Login.
- From the navigation bar, click the Devices menu and select Device Manager.
- Click Add Device to display the New Device page.
- On the New Device page, please add the following details.
- In the Name field, enter the device name.
- In the Alternate Name field, enter an alternate device name. You can search for a device by its alternate name.
- In the Description field, enter the device description. You can use this to provide additional information about the function, location, or any other pertinent information about the device.
- In the IP Address field, enter the device IP address.
- Click the plugin drop-down. By default, it is set to SNMP. Select SDWAN.
- Select the Enable SDWAN API Integration check box.
- Click the Vendor drop-down and select the VeloCloud option.
- In the VCO URL field, enter the URL for SDWAN vendor, VeloCloud.
- In the Username field, enter the username for SDWAN vendor, VeloCloud.
- In the Password field, enter the password for SDWAN vendor, VeloCloud.
- In the Poll Frequency field, enter how often to poll the device. The default value is 10 minutes.
- Enable field Auto-discover and monitor associated VeloCloud Edges - Use SNMP Plugin to automatically discover and monitor VeloCloud devices.
- Select the Enable SDWAN API Integration check box.
- Click Save As New to save the current changes as a New Device.
- Once the SDWAN plugin is configured, from the plugin drop-down, select plugin SNMP.
- Ensure that the field SNMP Capable check box is selected to enable the discovery of SNMP object types and to poll SNMP data on the device.
- Enter credentials (Username & Password) for VeloCloud devices. (Make sure to have same SNMP credentials for all VeloCloud Devices).
- Select other options and click Save As New to save the current changes as a New Device. This device is then queued for discovery.
- A new device has been added to the Device Manager screen.
- Click the Devices menu and select Discovery Manager. Here, you will see the device is in the discovery queue.
- After the discovery process is completed, VeloCloud devices will be visible on the Device Manager screen.
- To retrieve the metadata of a VeloCloud SDWAN device, follow these steps.
- From the list, select a device to view its metadata.
- Click in the Actions column to open the Edit Metadata pop-up.
- In the Edit Metadata pop-up, locate the section VeloCloud SDWAN DEVICE to find the
metadata fields.
Important: Value for the following metadata attributes might differ in VeloCloud and SevOne NMS.
- Authentication
- Service Up Since
- Software Updated
- System Up Since
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.TopNViews.spk
The following is the list of TopN reports imported.
- VeloCloud SDWAN CPU Utilization
- VeloCloud SDWAN HA Peer State
- VeloCloud SDWAN Link Jitter
- VeloCloud SDWAN Link Latency
- VeloCloud SDWAN Link Packet Loss
- VeloCloud SDWAN Link Packet Loss Pct
- VeloCloud SDWAN Link State
- VeloCloud SDWAN Link Utilization
- VeloCloud SDWAN Links
- VeloCloud SDWAN Memory Utilization
- VeloCloud SDWAN Path State
- VeloCloud SDWAN Path Utilization
- VeloCloud SDWAN Paths Jitter
- VeloCloud SDWAN Paths Latency
- VeloCloud SDWAN Paths Packet Loss
- VeloCloud SDWAN QoE After Ehancements (Video)
- VeloCloud SDWAN QoE After Enhancements (Voice)
- VeloCloud SDWAN QoE After Enhancements (Transactional)
- VeloCloud SDWAN Link QoE Before Enhancements (Voice)
- VeloCloud SDWAN Link QoE Before Enhancements (Video)
- VeloCloud SDWAN Link QoE Before Enhancements (Transactional)
- Device ICMP Reachability
SevOne Data Insight - OOTB Reports
- Indicator Summary Calendar View
- VeloCloud SDWAN Path Summary
- VeloCloud SDWAN Link Summary
- VeloCloud SDWAN Site Summary
- VeloCloud SD-WAN Dashboard
- Indicator Summary (Percent %)
- Indicator Summary (Bytes)
- Indicator Summary
- Object Summary
- Device Summary
Import via CLI
- Using ssh, login to SevOne NMS appliance as
support.
$ ssh support@<SevOne NMS appliance IP address>
- Go to SevOne NMS
container.
$ sudo podman exec -it <nms_container_id_or_name> /bin/bash
- Change directory to
/config/collectors/sdwan/velocloud/spk.
$ cd /config/collectors/sdwan/velocloud/spk
- Copy VeloCloud-DI-OOTB-Reports.tar to your SevOne Data Insight
machine.
$ scp VeloCloudSDWAN-DI-OOTB-Reports.tar sevone@<DI IP Address>:<path to directory>
Example
$ scp VeloCloudSDWAN-DI-OOTB-Reports.tar sevone@10.49.14.8:/home/sevone/
- Load
reports.
$ sevone-cli sdi reports load <REPORTS-TAR-FILE-PATH>
Import via SevOne Data Insight
- Download VeloCloudSDWAN-DI-OOTB-Reports.tar file from your SevOne NMS appliance and save it locally.
- Log in to your SevOne Data Insight machine by navigating to the appropriate URL in your browser.
- On the Report Manager screen, click Import button.
- Click or drag file to upload. For example, VeloCloudSDWAN-DI-OOTB-Reports.tar.
- Select an apt datasource from the Datasource drop-down.
- Select the Assign each report to its original owner's username check box to assign the reports imported to its original owner's username.
- Click Upload.
Note:- Reports can only be imported from a .tar file. Other file extensions are not acceptable. If the file extension is not a .tar file then it will simply ignore the action.
- Reports can be imported to the same or newer version of SevOne Data Insight as the one they were exported from, by drag and drop into Reports.
- SevOne does not support the importing of reports from a newer to older version.
Upgrade
To upgrade your VeloCloud solution on SevOne NMS, follow the steps below.
If you are on VeloCloud version 7.0.2 or above, skip Steps 3, 4, 5, and 8 below.
- If your SevOne NMS is not already on version 7.0, proceed to upgrade it to 7.0.
- Using ssh, login to SevOne NMS appliance as
support.
$ ssh support@<SevOne NMS appliance IP address>
- Change directory to /config/collectors/sdwan/velocloud/on the NMS appliance
host.
$ cd /config/collectors/sdwan/velocloud/
- Download the following (latest) files from IBM Passport Advantage (https://www.ibm.com/software/passportadvantage/pao_download_software.html) via
Passport Advantage Online. However, if you are on a legacy / flexible SevOne contract and do
not have access to IBM Passport Advantage but have an active Support contract, please contact
IBM SevOne Support for the latest files.You must place <tar/zip> files in
/config/collectors/sdwan/velocloud directory.
- sdwan-velocloud-installation-v7.0.0-build.<###>.tgz
- sdwan-velocloud-installation-v7.0.0-build.<###>.tgz.sha256.txt
- signature-tools-<latest-version>-build.<latest>.tgz
- signature-tools-<latest-version>-build.<latest>.tgz.sha256.txt
- Execute the following commands to verify the checksum of the code signing tool before
extracting
it.
$ (cd /config/collectors/sdwan/velocloud && cat $(ls -Art signature-tools-*.tgz.sha256.txt | \ tail -n 1) | sha256sum --check) $ sudo tar xvfz $(ls -Art /config/collectors/sdwan/velocloud/signature-tools-*.tgz | \ tail -n 1) -C /
- Go to SevOne NMS
container.
$ sudo podman exec -it <nms_container_id_or_name> /bin/bash
- Change directory to /config/collectors/sdwan/velocloud/on the NMS
pod.
$ cd /config/collectors/sdwan/velocloud/
- Verify the signature of Solutions .tgz
files.
$ sh /usr/local/scripts/SevOne-validate-image -i $(ls -Art /config/collectors/sdwan/velocloud/sdwan-*.tgz | \ tail -n 1) -s $(ls -Art /config/collectors/sdwan/velocloud/sdwan-*.tgz.sha256.txt | tail -n 1)
- Extract the latest
build.
$ tar -xvf $(ls -Art /config/collectors/sdwan/velocloud/sdwan-*.tgz | tail -n 1) -C /config/collectors/sdwan/velocloud
You will see the following files in the folder.
- VeloCloudSDWAN.Certification.spk - it creates one device type VeloCloudSDWAN and 5 object types suffixed with (VeloCloud).
- Replace the file VeloCloudSDWAN.Certification.spk in the spk directory
/config/collectors/sdwan/velocloud/spk.
$ cp VeloCloudSDWAN.Certification.spk /config/collectors/sdwan/velocloud/spk
- Change directory to
/config/collectors/sdwan/velocloud/spk.
$ cd /config/collectors/sdwan/velocloud/spk
You will see the following files in the directory.
- VeloCloudSDWAN.MIBs.spk - it imports two VeloCloudSDWAN MIB files (VELOCLOUD-EDGE-MIB.mib and VELOCLOUD-MIB.nib).
- VeloCloudSDWAN.Certification.spk - it creates one device type VeloCloud SDWAN and 5 object types suffixed with (VeloCloud).
- VeloCloudSDWAN.DeviceGroups.spk - it creates 1 device group.
- VeloCloudSDWAN.ObjectGroups.spk - it creates 3 object group class (VeloCloud SDWAN) and 3 Object Groups underneath it.
- VeloCloudSDWAN.MetadataSchema.spk - it imports the metadata schema for VeloCloud SDWAN devices.
- VeloCloudSDWAN.Alert.Policies.spk - it imports 5 alert policies. All policies are imported as disabled by default.
- VeloCloudSDWAN.TopNViews.spk - it imports 22 TopN Report views.
- VeloCloudSDWAN-DI-OOTB-Reports.tar - it imports 1 SevOne Data Insight report and 3 Templates.
- Import the above .spk files in sequence.
- VeloCloudSDWAN
MIBs
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.MIBs.spk
- Device Type and Object
Types
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.Certification.spk
- Metadata
Schema
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.MetadataSchema.spk
- Device
Groups
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.DeviceGroups.spk
- Object
Groups
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.ObjectGroups.spk
- Alert
Policies
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.Alert.Policies.spk
The following is the list of alerts imported.
- VeloCloud SDWAN - WAN Link - Packet Loss
- VeloCloud SDWAN - WAN Link - Latency
- VeloCloud SDWAN - WAN Link - Jitter
- VeloCloud SDWAN - VCG Path - Latency
- VeloCloud SDWAN - VCG Path - Packet Loss
Important: All alerts are disabled by default.
- VeloCloudSDWAN
MIBs
- Perform the steps provided in the section Device
Onboarding if you have not done so previously.Important:
- Devices that were added manually in the past are not currently linked to the orchestrator. Any devices that were absent previously but are now present in the orchestrator will be automatically discovered and linked to the orchestrator during the discovery process.
- After the VCO device discovery process is completed, it populates the value for metadata attribute Orchestrator name for VeloCloud devices that were previously onboarded. Run the device discovery process for all existing devices to populate values for all metadata attributes associated with those devices. For the newly added devices by VCO, the metadata population happens once the discovery process is completed for them.
- Import the TopN reports on SevOne NMS container using CLI.
$ SevOne-import --allow-overwrite --file VeloCloudSDWAN.TopNViews.spk
The following is the list of TopN reports imported.
- VeloCloud SDWAN CPU Utilization
- VeloCloud SDWAN HA Peer State
- VeloCloud SDWAN Link Jitter
- VeloCloud SDWAN Link Latency
- VeloCloud SDWAN Link Packet Loss
- VeloCloud SDWAN Link Packet Loss Pct
- VeloCloud SDWAN Link State
- VeloCloud SDWAN Link Utilization
- VeloCloud SDWAN Links
- VeloCloud SDWAN Memory Utilization
- VeloCloud SDWAN Path State
- VeloCloud SDWAN Path Utilization
- VeloCloud SDWAN Paths Jitter
- VeloCloud SDWAN Paths Latency
- VeloCloud SDWAN Paths Packet Loss
- VeloCloud SDWAN QoE After Ehancements (Video)
- VeloCloud SDWAN QoE After Enhancements (Voice)
- VeloCloud SDWAN QoE After Enhancements (Transactional)
- VeloCloud SDWAN Link QoE Before Enhancements (Voice)
- VeloCloud SDWAN Link QoE Before Enhancements (Video)
- VeloCloud SDWAN Link QoE Before Enhancements (Transactional)
- Device ICMP Reachability
Solution Verification and Customization
Perform the following steps to log onto your SevOne NMS appliance. For more details, please refer to SevOne NMS System Administration Guide or SevOne NMS User Guide > section Login.
- Enter the URL for the SevOne NMS appliance into your web browser to display the Login page.
- Enter the credentials and click Login. For example, Username: admin and Password: SevOne
- To check MIB files imported, click the Administration menu, select Monitoring Configuration, and then select MIB Manager. For more details on MIB Manager, please refer to SevOne NMS System Administration Guide > section MIB Manager.
- To check device groups imported, click the Devices menu and select Grouping, then Device Groups. For more details on Device Groups, SevOne NMS User Guide > section Device Groups.
- To check object groups imported, click the Devices menu, select Grouping , and
then select Object Groups. For more details on Object Groups, SevOne NMS System
Administration Guide
> section Object Groups.
Important: You can change the Object Group Membership Rules based on your network environment.
- Check VeloCloud SDWAN OOTB reports imported on SevOne Data machine.
The following is the list of reports imported.
- Indicator Summary Calendar View
- VeloCloud SDWAN Path Summary
- VeloCloud SDWAN Link Summary
- VeloCloud SDWAN Site Summary
- VeloCloud SD-WAN Dashboard
- Indicator Summary (Percent %)
- Indicator Summary (Bytes)
- Indicator Summary
- Object Summary
- Device Summary
Troubleshooting
Upgrade process from version 6.7 and version 6.8 to version 7.0.0
If QoE data fails to generate post upgrade, then execute the steps below.
- Check VeloCloud
logs.
$ /var/log/VeloCloud1/7.0.0-build.6/QoeAgent/VeloCloud1_QoeAgent_7.0.0-build.6.log
- Check for the error mentioned
below.
{"name":"Orchestrator (VCO)","type":"Generic","old_ts":1716901953,"new_ts":1716901953,"ip":"0.0.0.0","automatic_creation":true,"objec2024-05-28T13!https://emoji.slack-edge.com/T27SFGS2W/12/9885a4ebae28a36a.png!33Z ERR SOA request error in /sevone.api.v3.Devices/Data error="rpc error: code = Unauthenticated desc = failed to a2024-05-28T13!https://emoji.slack-edge.com/T27SFGS2W/12/9885a4ebae28a36a.png!33Z ERR Error in objectTransport.CreateDeviceData error="rpc error: code = Unauthenticated desc = failed to authenti2024-05-28T13:23:33Z INF Sending SOA request... agent=QoeAgent endpoint=/sevone.api.v3.Metadata/ObjectTypes requestId=1
- Restart SOA container.
$ podman restart nms-nms-soa
- RetrieveVeloCloud API key from Redis.
- To Retrieve VeloCloud API
Key.
$ podman exec -it nms-nms-redis redis-cli keys "velocloudapiKeyV3*"
- Access Redis Container.
$ podman exec -it nms-nms-redis redis-cli
- Delete VeloCloud API key from Redis (refer to step :To retrieve VeloCloud API key from
Redis).
$ DEL<VeloCloud key retrieved from previous step>
- To Retrieve VeloCloud API
Key.
VeloCloud Pod Panic Error
- Check VeloCloud pod
logs.
$ podman logs nms-collections-velocloud-collector
- Check if VeloCloud pod is restarting with below
error.
{"level":"info","ts":1717052925.4193544,"msg":"Data in redis needs to be updated"} panic: runtime error: index out of range [0] with length 0goroutine 1 [running]:
- If error is found,
- Retrieve VeloCloud-config key from
Redis.
$ podman exec -it nms-nms-redis redis-cli keys "VeloCloud1-config*"
- Access Redis container.
$ podman exec -it nms-nms-redis redis-cli
- Delete the VeloCloud API key retrieved (refer to step :To retrieve VeloCloud API key from
Redis).
$ DEL<VeloCloud key retrieved from previous step>
- Retrieve VeloCloud-config key from
Redis.