diff --git a/pve/001-update-idrac.md b/pve/001-update-idrac.md index d06642e..d21d71f 100644 --- a/pve/001-update-idrac.md +++ b/pve/001-update-idrac.md @@ -118,3 +118,7 @@ root@debian:~# flashboot /root/Bootloaders/x64sas2.rom ``` - Entrare nel BIOS, tipicamente premendo F2, e ripristinare le voci precedentemente modificate + +> Infine, cambiare la password dell'utente root + +![root-passwd](asset/img/root-passwd.png) diff --git a/pve/005-switch-config.md b/pve/005-switch-config.md new file mode 100644 index 0000000..acc60bb --- /dev/null +++ b/pve/005-switch-config.md @@ -0,0 +1,121 @@ +# Configurazione Switch CISCO + +- Identificare gli switch presenti nel rack + +```sh +sw-Rack-3#show switch + +Switch# Role Mac Address Priority Version State +---------------------------------------------------------- +*1 Master 0006.f601.c780 10 3 Ready +2 Member a44c.112f.2d00 5 3 Ready +``` + +- Controllate le VLAN disponibili e identificare quella nella quale dovrà finire il server PVE (tipicamente Management), comprese le porte + +```sh +sw-Rack-3#show vlan +VLAN Name +Status Ports +---- -------------------------------- --------- ------------------------------- +1 default +active Gi1/0/2, Gi1/0/8, Gi1/0/9, Gi1/0/10, Gi1/0/11, Gi1/0/12, Gi1/0/13, Gi1/0/14, Gi1/0/15, Gi1/0/16, Gi1/0/17 +Gi1/0/18, Gi1/0/19, Gi1/0/20, Gi1/0/21, Gi1/0/22, Gi1/0/23, Gi1/0/24, Gi1/0/25, Gi1/0/26, Gi1/0/27 +Gi1/0/28, Gi1/0/29, Gi1/0/30, Gi1/0/31, Gi1/0/32, Gi1/0/33, Gi1/0/34, Gi1/0/35, Gi1/0/36, Gi1/0/37 +Gi1/0/38, Gi1/0/39, Gi1/0/40, Gi1/0/41, Gi1/0/42, Gi1/0/43, Gi1/0/44, Gi1/0/45, Gi1/0/46, Gi1/0/48, Gi1/1/1 +Gi1/1/2, Gi1/1/3, Gi1/1/4, Te1/1/2, Gi2/0/1, Gi2/0/2, Gi2/0/8, Gi2/0/9, Gi2/0/10, Gi2/0/11, Gi2/0/12 +Gi2/0/13, Gi2/0/14, Gi2/0/15, Gi2/0/16, Gi2/0/17, Gi2/0/18, Gi2/0/19, Gi2/0/20, Gi2/0/21, Gi2/0/22 +Gi2/0/23, Gi2/0/24, Gi2/0/25, Gi2/0/26, Gi2/0/27, Gi2/0/28, Gi2/0/29, Gi2/0/30, Gi2/0/31, Gi2/0/32 +Gi2/0/33, Gi2/0/34, Gi2/0/35, Gi2/0/36, Gi2/0/37, Gi2/0/38, Gi2/0/39, Gi2/0/40, Gi2/0/41, Gi2/0/42 +Gi2/0/43, Gi2/0/44, Gi2/0/45, Gi2/0/46, Gi2/0/47, Gi2/0/48, Gi2/1/1, Gi2/1/2, Gi2/1/4, Te2/1/2 + +11 VLANVersoTutto +active + +902 Management +active Gi1/0/1, Gi1/0/4, Gi1/0/7, Gi1/0/47, Gi2/0/4, Gi2/0/7 +``` + +- Verificare le interfacce in `trunk` + +```sh +sw-Rack-3#show interface trunk +Port Mode Encapsulation Status Native vlan +Te1/1/1 on 802.1q trunking 199 +Gi2/1/3 on 802.1q trunking 199 +Te2/1/1 on 802.1q trunking 199 +Po1 on 802.1q trunking 199 +Po2 on 802.1q trunking 199 + +Port Vlans allowed on trunk +Te1/1/1 1-4094 +Gi2/1/3 1-4094 +Te2/1/1 1-4094 +Po1 1-4094 +Po2 1-4094 + +Port +Vlans allowed and active in management domain +Te1/1/1 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Gi2/1/3 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Te2/1/1 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Po1 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Po2 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 + +Port +Vlans in spanning tree forwarding state and not pruned +Te1/1/1 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Gi2/1/3 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Te2/1/1 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Po1 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +Po2 1,10-12,111,199,250,321,337,348,501,710,731,800-803,842-843,900-910,972,997-999,1942,4000-4009 +``` + +![sw-config](asset/img/sw-config.png) + +- Se, ad esempio, volessimo configurare le porte Gi1/0/8-Gi2/0/8 per l'IDRAC e le porte Gi1/0/9-Gi2/0/9 per PVE + +```sh +# Verificare la configurazione delle varie interfacce +show running-config interface gigabitEthernet 1/0/9 + +# Creazione portchannel per PVE + +switch# configure terminal +switch(config)# interface gigabitEthernet 1/0/9 +switch(config-if)# channel-group 3 mode active +switch(config)# interface gigabitEthernet 2/0/9 +switch(config-if)# channel-group 3 mode active +switch(config)# interface port-channel 3 +switch(config-if)# description PVE +switch(config-if)# switchport trunk encapsulation dot1q +switch(config-if)# switchport trunk native vlan 199 +switch(config-if)# switchport mode trunk +sw-Rack-3(config-if)#write + +sw-Rack-3(config-if)#do show run int gi2/0/9 + +sw-Rack-3(config-if)#do show run int gi1/0/9 + +sw-Rack-3(config-if)#do show run int port-channel 3 +``` + +- Aggiungere le porte dell'IDRAC alla VLAN 902 + +```sh +switch# configure terminal +sw-Rack-3(config)#interface gigabitEthernet 1/0/8 +sw-Rack-3(config-if)#description IDRAC_PVE +sw-Rack-3(config-if)#switchport mode access +sw-Rack-3(config-if)#switchport access vlan 902 +sw-Rack-3(config-if)#exit + +sw-Rack-3(config)#interface gigabitEthernet 2/0/8 +sw-Rack-3(config-if)#description IDRAC_DR_PVE +sw-Rack-3(config-if)#switchport mode access +sw-Rack-3(config-if)#switchport access vlan 902 +sw-Rack-3(config-if)#exit +sw-Rack-3(config)#do write +``` + +> Al termine, impostare IP statico all'IDRAC \ No newline at end of file diff --git a/pve/asset/img/root-passwd.png b/pve/asset/img/root-passwd.png new file mode 100644 index 0000000..20f9a76 Binary files /dev/null and b/pve/asset/img/root-passwd.png differ diff --git a/pve/asset/img/sw-config.png b/pve/asset/img/sw-config.png new file mode 100644 index 0000000..b327537 Binary files /dev/null and b/pve/asset/img/sw-config.png differ