Removing the factory default address - BlueCat Integrity - 9.3.0

Address Manager Administration Guide
Locale
English
Product name
BlueCat Integrity
Version
9.3.0

Remove the factory default address from eth0/bond0.

By default, Address Manager and DNS/DHCP Server ship with the factory default IPv4 address of 192.168.1.1 on the eth0 interface; this is also the default Primary Service IP.

For most customers, this default IP address will be removed by setting a new IPv4 address on eth0 during the initial set-up and configuration of the appliance or VM; the newly assigned IPv4 address on eth0 also becomes the new Primary Service IP.

However, customers with DNS/DHCP Servers running VLAN interfaces might require the Primary Service IP on a VLAN interface, and as such will need to remove the IPv4 address on eth0 as a security measure to eliminate that potential route to the server. You can remove the default factory IPv4 address on eth0 or bond0 by first configuring the Primary Service IP on the required VLAN interface then removing the IPv4 address on eth0/bond0.
Warning: Changing the Service interface configured with the Primary IP

BlueCat advises extreme caution if attempting to change the Service interface associated with the Primary IP address (for example, if the Service interface and Primary IP are configured on eth0, but you want to configure the Service interface on VLAN eth0.100). Changing the Service interface may result in a restart of all running services. That is, changing the Service interface may result in a restart of services running on additional IP addresses, loopback addresses, and VLAN interfaces.

To remove the factory default address:

If performing a clean/new server installation, steps 1 and 2 aren't required; go to step 3.

  1. From the DNS/DHCP Server Administration Console, remove the server from Address Manager control. 
    Adonis> configure system
Adonis:configure:system> set state no-proteus-control
  2. From the DNS/DHCP Server Administration Console, run the reset factory-default command to remove all IP addresses and sub-interfaces.
    Note: The reset factory-default command isn't supported on the bond0 interface. You must first run the remove bond0 command from Interface configuration mode, then run the modify eth0 and reset factory-default commands.
    Warning: Run the reset factory-default command with extreme caution. Running this command will delete ALL IPv4 and IPv6 addresses and VLAN interfaces and bonding interfaces configured on the selected interface and restore factory defaults. This action is irreversible.
    Adonis> configure interfaces
Adonis:configure:interfaces> modify eth0
Adonis:configure:interface:eth0> reset factory-default
All configurations for this interface will be set to factory default.
Please confirm to proceed(Y/y or N/n)? y
Successfully reset the interface to factory default
  3. Add new VLAN interfaces.
    Note: If you require NIC bonding/network redundancy on top of VLAN interfaces, you must configure bonding before creating VLANs. For details, refer to Configuring DNS/DHCP Server network redundancy from the Administration Console.
    Adonis> configure interfaces
Adonis:configure:interfaces> add vlan-interface vlan-id <1> parent <eth0|bond0>
  4. Assign IP addresses to the newly created VLAN interfaces or the bonding interface. 
    Adonis> configure interfaces
Adonis:configure:interfaces> modify <vlan-interface|bond0>
Adonis:configure:interface:vlan-interface> add address <ipv4|ipv6address/
netmask>
  5. Set a new Primary Service IPv4 address using an IPv4 address assigned to one of your newly created VLAN interfaces. You can also set a new Primary Service IPv6 address if necessary. 
    Adonis> configure interfaces
Adonis:configure:interfaces> modify <vlan-interface|bond0>
Adonis:configure:interface:vlan-interface> set primary <ipv4|ipv6address>
Adonis:configure:interface:vlan-interface> save
Saved interface successfully
This operation will disconnect SSH connections.
  6. Remove the IPv4 address 192.168.1.1 from eth0/bond0 interface. 
    Adonis> configure interfaces
Adonis:configure:interfaces> modify <eth0|bond0>
Adonis:configure:interface:eth0> remove address 192.168.1.1/24
Adonis:configure:interface:eth0> save
Saved interface successfully
  7. Run the show interfaces command to verify the new Primary Service IP and that the default IPv4 address has been removed from eth0/bond0. 
    Adonis> show interfaces
eth0:
     Active = on
eth0.1:
     IPv4 Addresses
         192.0.2.100/24 (Primary)
     Active = on
eth1:
     Active = on
eth2:
     Active = off
eth3
     Active = off
Dedicated Management = Enabled
Management Interface = eth0.1
Service Interface = eth0.1
Return the DNS/DHCP Server to Address Manager control:
  • New servers—from the Address Manager user interface, add the server (Servers tab > New).
  • Previously managed servers—from the Address Manager user interface, Disable the server (Servers tab > server name > Disable) then replace the server (Servers tab > server name > Replace). From the Replace Server page, you must select the Reset services on remote DNS/DHCP Server check box due to changing the Services interface and Primary Service IP on the server.