e
| |||||||
| The basic premise is to restrict inbound access to the public-facing addresses to only allow ports 4505/TCP, 4506/TCP, and 930/TCP |
2. Enter the command sudo yum install
http://yum.128technology.com/installer/repo.rpm to install the
Yum repository that corresponds to the 128T software installer.
3. Enter the command sudo yum install 128T-installer command to
download the installer
4. Enter the command sudo install128t to launch the interactive installer
wizard. Result: The 128T installer application's splash screen appears.
5. Press the enter key to select Begin and start the installation wizard.
6. When prompted, open the client certificate you received as part of your 128T
purchase. Copy the entire contents, including the Certificate and Private key
information, and paste it into the Client Certificate window of the install wizard.
The content must begin with the line ----- BEGIN CERTIFICATE----- and end with ----
-END RSA PRIVATE KEY-----.
7. Press the tab key after pasting the client certificate to select the OK button, and
hit enter.
| Pre-requisite | Centos 7.5 or RHEnterprise |
|---|---|
| interfaces | renames: mgmt1, lan1 and wan1 ( + IP@) |
| hostname | unique, and meaningful name |
| create 128t user ( | sudo privileges |
| disable | Hyperthreading disabled: friewalld: SELinux: |
| Install 128T | Router and Conductor |
copy the client's certificate to /etc/pki/128technology/release.pem | |
| Initialiser | Select |
: Router or Conductor Select: Standalone or 1xHA & 2xHA ( 2x Node in the router ) | |
Node Name= ( By default this field uses the Linux system's hostname) Router/Conductor Name: identifiable by the full name of nodeName.routerName ; e.g., labsystem1.boston. | |
sudo systemctl status 128T sudo systemctl start/restart/stop 128T | |
| Terminology | |
|---|---|
| Under Authority | Conductor Service ( Service address, Service Transport, app id, Access Policy, Security Policy and Service Policy) Tenant Security Policy & Service Policy Routers |
| Under Authority > Router | |