e
| |||||||
The basic premise is to restrict inbound access to the public-facing addresses to only allow ports 4505/TCP, 4506/TCP, and 930/TCP | |||||||
Pre-requisite | Centos 7.5 or RHEnterprise | ||||||
interfaces | renames: mgmt1, lan1 and wan1 ( + IP@) | ||||||
hostname | unique, and meaningful name | ||||||
create 128t user ( | sudo privileges | ||||||
disable | Hyperthreading disabled: friewalld: SELinux: | ||||||
Install 128T | Router and Conductor |
1. Launch a Linux command prompt.
2. Enter the command sudo yum install
http://yum.128technology.com/installer/repo.rpm to install the
Yum repository that corresponds to the 128T software installer.
3. Enter the command sudo yum install 128T-installer command to
download the installer4. Enter the command sudo install128t to launch the interactive installer
wizard. Result: The 128T installer application's splash screen appears.
5. Press the enter key to select Begin and start the installation wizard.
copy the client's certificate to /etc/pki/128technology/release.pem | |
Initialiser | Select: Router or Conductor Select: Standalone or 1xHA & 2xHA ( 2x Node in the router ) |
Node Name= ( By default this field uses the Linux system's hostname) Router/Conductor Name: identifiable by the full name of nodeName.routerName ; e.g., labsystem1.boston. | |
sudo systemctl status 128T sudo systemctl start/restart/stop 128T | |
Terminology | |
---|---|
Under Authority | Conductor Service ( Service address, Service Transport, app id, Access Policy, Security Policy and Service Policy) Tenant Security Policy & Service Policy Routers |
Under Authority > Router | |