Network Discovery setup and configuration - Adaptive Applications - BlueCat Gateway - 23.2

Network Discovery Administration Guide

Locale
English
Product name
BlueCat Gateway
Version
23.2

The following steps describe the initial setup steps for deploying the Network Discovery docker container.

When installing Network Discovery, you'll be deploying it from a docker container with an extensive set of settings and parameters. Several sets of docker parameters are optional or are needed only for specific system configurations. We recommend you review all available options described below, then construct and customize the docker command separately before you start.

There are two main system configurations for deploying Network Discovery.

  • Single Container: Both the Network Discovery Management UI and Discovery Probes are run from the same container.

    If you use this strategy, you will deploy only one container. Both the discovery probes and Network Discovery's Management features will be run from the same instance.

  • Multiple Containers: Each probe is deployed in a separate Network Discovery container, managed by a single deployment of Network Discovery in another ("Management") container.

    If you use this strategy, you will need to deploy one (1) Manager container and one (1) additional container for each probe. We recommend you give a descriptive Docker name for each container (like "multi_manager", "multi_probe1", and "multi_probe2") to make it clear which is which.

    Note: After deploying the containers, you'll also need to add each probe container to the probe list within the Management instance.
Tip: After deployment of any container, you can edit most of these settings in the Network Discovery UI, or within Network Discovery configuration files.

Deploying a docker container

You can deploy the Gateway docker container from the provided image either on a machine that has a direct connection to the Internet or on a machine that does not have a direct connection to the Internet.

  • If you want to deploy Network Discovery on a machine that has a direct connection to the Internet, do the following:

    1. From the Linux console of the machine, run the following command:

      docker login quay.io
    2. At the prompt, enter your Quay user name and password obtained when generating the encrypted Password.

    3. Run the Gateway Container using the following command, replacing the indicated fields with appropriate values:

      docker run -d --name <NAME> -p <HTTP_PORT>:8000 -p <HTTPS_PORT>:44300 \
      -e BAM_IP=<BAM_IP> \
      -e BAM_API_VERSION=<BAM_API_VERSION> \
      -e SESSION_COOKIE_SECURE=false \
      quay.io/bluecat/network_discovery:23.2

      Refer to step 6 in the following section for details.

      Running this command will automatically trigger a download of the image (docker pull) from the public repository (Quay) if the image is not yet available in the local docker repository.

    4. From Gateway, confirm that the deployment was successful. For more details, see Verifying docker deployment.

  • If you want to deploy Network Discovery on a machine that does not have a direct connection to the Internet, do the following:

    1. From the Linux console of a separate machine that has a connection to the internet, run the following command:

      docker login quay.io
    2. At the prompt, enter your Quay user name and password obtained when generating the encrypted Password.

    3. Download the latest Network Discovery Adaptive Application file from the public repository (Quay) into the local docker repository by using the following command:

       docker pull quay.io/bluecat/network_discovery:23.2
    4. Run the following command to save the Docker image as a .tar file:

      docker save -o <path_for_generated_tar_file> quay.io/bluecat/network_discovery:23.2
    5. Copy the file to the machine that will run Network Discovery. On that machine, run the following command to load the image from the file into the local docker repository:

      docker load -i <generated_tar_file>
    6. Run the Gateway Container using the following command, replacing the indicated fields with appropriate values:

      docker run -d --name <NAME> -p <HTTP_PORT>:8000 -p <HTTPS_PORT>:44300 \
      -e BAM_IP=<BAM_IP> \
      -e BAM_API_VERSION=<BAM_API_VERSION> \
      -e SESSION_COOKIE_SECURE=false \
      quay.io/bluecat/network_discovery:23.2

      Where:

      Parameter Description
      <NAME>

      <HTTP_PORT>

      <HTTPS_PORT>

      <NAME>: Docker name

      <HTTP_PORT>: The HTTP port for BlueCat Gateway

      <HTTPS_PORT>: The HTTPS port for BlueCat Gateway

      <BAM_IP> The IP or FQDN for BlueCat Address Manager
      <BAM_API_VERSION> API version of BlueCat Address Manager. This can be 1 or 2; if you skip this field, 1 will be automatically applied as the API version.
      <SESSION_COOKIE_SECURE> If true (the default), Network Discovery will restrict its functions to HTTPS locations and addresses. If false, Network Discovery will operate on both HTTP and HTTPS.
      Optional configuration parameters: If needed, include the following configuration parameters in your docker command.
      Important: Parameters specified in the docker run command override settings made in configuration files. To change parameters specified in the docker run command, you must delete and recreate the container.
      -e SSH_USERNAME=<SSH_USER> -e SSH_PASSWORD=<SSH_PASS> \
      -e MGMT_URL=<MGMT_URL>
      -e MGMT_USERNAME=<MGMT_USER> -e MGMT_PASSWORD=<MGMT_PASS>\
      -e MGMT_INTERVAL=<INTERVAL> \
      -e DISCOVERY_PROBE_LIST='<discovery_probes>' \
      -e EXTERNAL_DISCOVERY_LABEL=<external_discovery_label> \
      -e LOG_LEVEL=<log_level> -e MAXBYTES=<max_bytes> -e BACKUPCOUNT=<backup_count> \
      
      Where:
      Parameter Description

      <SSH_USER>

      <SSH_PASS>

      Optional parameters to set the SSH username and password.

      <SSH_USER>: The SSH username

      <SSH_PASS>: The SSH encrypted password

      <MGMT_URL> The URL for the Management instance.

      <MGMT_USER>

      <MGMT_PASS>

      The account for logging in to the Management instance.

      <MGMT_USER>: The username for logging in to the Management instance.

      <MGMT_PASS>: The encrypted password for logging in to the Management instance.

      <INTERVAL> The management interval for scanning and deleting discovery log and status files, in minutes
      <discovery_probes> The Discovery Probe List, in JSON format on a single line. For more details, see Discovery probe list (JSON format).
      Tip: Manipulation of the Discovery Probe JSON file is typically done only during scripted and customized actions, such as automating deployment of Network Discovery probes. Most users can simply add new probes using the Network Discovery UI.
      <external_discovery_label> The external discovery label, as listed in the external_discoveryUser-defined field (UDF) in Address Manager

      <log_level>

      <max_bytes>

      <backup_count>

      Settings that determine Network Discovery logging behaviour:

      <log_level>: The integer level at which logging should take place.

      <max_bytes>: The maximum number of bytes for the log file.

      <backup_count>: The number of backups to make.

      Optional troubleshooting folder parameters: We recommend you mount additional folders to the host to ease future maintenance and troubleshooting. To do so, include the following parameters in your docker command:
      -v <GATEWAY_LOG_DIR>:/logs/ \
      -v <GATEWAY_WORKSPACE>:/bluecat_gateway/ \
      -v <DISCOVERY_LOG_DIR>:/builtin/workflows/network-discovery/NetworkDiscovery/logs/ \ 
      -v <DISCOVERY_INPUT_DIR>:/builtin/workflows/network-discovery/NetworkDiscovery/<restv1_or_restv2>/scheduler/data/ \ 
      -v <DISCOVERY_OUTPUT_DIR>:/builtin/workflows/network-discovery/NetworkDiscovery/<restv1_or_restv2>/scheduler/output/ \ 
      Where:
      Field Description
      <GATEWAY_LOG_DIR> Path for BlueCat Gateway logs.
      <GATEWAY_WORKSPACE> Path for the standard Gateway workspace. Network Discovery configuration files are also stored here.
      <DISCOVERY_LOG_DIR> Path for Discovery logs.
      <DISCOVERY_INPUT_DIR> Path for Discovery input data.
      <DISCOVERY_OUTPUT_DIR> Path for Discovery output data (such as JSON files and log files).
      <restv1_or_restv2> Current API version of BlueCat Address Manager.

      This can be restv1 for v1 API or restv2 for v2 API.

    7. From Gateway, confirm that the deployment was successful. For more details, see Verifying docker deployment.