Search This Blog

Thursday, December 13, 2018

IBM DataPower Gateway Commissioning Step by Step


What is IBM DataPower Gateway?

IBM DataPower® Gateway helps organizations meet the security and integration needs of a digital business in a single multi-channel gateway. It provides security, control, integration and optimized access to a full range of mobile, web, application programming interface (API), service-oriented architecture (SOA), B2B and cloud workloads.

https://www.ibm.com/products/datapower-gateway

The DataPower capabilities are delivered in a network appliance form factor:

Physical appliances

  • XG45: DataPower Service Gateway
  • XI52: DataPower Integration Appliance
  • XB62: DataPower B2B Appliance

DataPower form factors Virtual appliances (under a hypervisor)

  • XG45/XI52 Virtual Edition
    • Production
  • XG45/XI52 Virtual Edition for Nonproduction Environment
    • Multi-user test and development
  • XG45/XI52 Virtual Edition for Developers
    • Single-user test and development

Network interfaces for virtual appliances

  • Physical appliances have 8 (XG45) or 12 (XI52, XB62) Ethernet interfaces
  • Virtual appliances have four network interfaces:
    • eth0, eth1, eth2, eth3
    • Speeds depend on hypervisor and hardware
    • Physical mode and flow control settings are ignored
  • Hypervisors that the IBM PureApplication System manages allow only eth1-3 to be used for DataPower service configuration
    • eth0 is used by IBM PureApplication System management
  • All other hypervisor environments allow eth0-3 to be used for service configuration

Deployment on stand-alone VMware hypervisors

    • Configure the appliance to run inside the virtual machine
    • Start Commissioning
      • Login to the appliance
      • Enable Secure Backup Mode
      • Enable Common Compatibility Mode
      • Create new admin password 
    • Run the Install Wizard
      • Step 1 - Confirure network interfaces
      • Step 2 - Configure network service
      • Step 3 - Define a unique system identifier for the appliance
      • Step 4 - Do you want to configure remote Management access
      • Step 5 - Configure a user account that can reset passwords
      • Step 6 - Configure the RAID array
    • Save the current configuration

    Configure the appliance to run inside the virtual machine

    1. Setup the virtual machine 
      1. Install VMWare player
      2. Inport the OVA file of the virtual applicance 
      3. Use the below configuration
        1. Memory
          1. Minmum: 4 GB
          2. Required: 8GB
        2. Processors
          1. Minmum: 4 GB
          2. Required: 8GB
        3.  Network Adapter 
          1. Insure that one of the adapters eth0 is Host-only

    Start Commissioning

    Login to the appliance

    login: admin

     

    password: admin

     

    Enable Secure Backup Mode

    Secure backup mode supports the creation of a backup to restore the complete configuration of another DataPower® Gateway. The creation of a secure backup is available only when secure backup mode is enabled. Generally, secure backup mode is enabled during the initial firmware setup of the DataPower Gateway

     

    Confirn Enable Secure Backup Mode

    Enable Common Compatibility Mode

    When the DataPower Gateway is in Common Criteria Compatibility mode, it forces several settings to specific values. These values are required and enforced at restart. Common Criteria Compatibility mode affects audit log policies, password policies, and includes a group of default rules and actions.

    Create new admin password

    Please Enter New Password to be used in next login

    Run the Install Wizard

    Step 1 - Confirure network interfaces

    Do you want to confirure network interfaces

    Do you want to confirure network interfaces answers to do

    1. Start configuring the first network interface
      1. Enable the DHCP
    2. Don't configure the rest network interfaces

    Step 2 - Configure network service

    Step 3 - Define a unique system identifier for the appliance

    Sometimes there is a need to have an identifier that is unique per DataPower device. Typically the device serial number is taken for these purposes.
    Note: Give any appropriate unique system identifier.

    Step 4 - Do you want to configure remote Management access

    These configuration require the IP address of the local interface that manage the appliance.

    Do you have this information? [y]: y
    Do you want to enable SSH? [y]: y
    Enter the local IP address [0 for all] : 0
    Note: In case you provide specific IP earlier, Provide same IP as provided earlier.
    Enter the port number [22]:
    Note: Just enter to accept default or write your needed port

    Do you want to enable WebGUI access [y]: y

    The WebGUI is one of the graphical user interfaces that the DataPower Gateway provides. The Blueprint Console is the one of the graphical user interface (GUI) for the DataPower Gateway. The Blueprint Console allows you to create and manage patterns and tenants.


    Enter the local IP address [0 for all] : 0
    Note: Just enter to accept default or write your needed port
    Enter the port number [9090]:
    Note: Just enter to accept default or write your needed port

    Step 5 - Configure a user account that can reset passwords




    Step 6 - Configure the RAID array



    Save the current configuration




    Access the configured device

    Show int

    The show ip interface command provides tons of useful information about the configuration and status of the IP protocol and its services, on all interfaces. The show ip interface brief command provides a quick status of the interfaces on the router, including their IP address, Layer 2 status, and Layer 3 status

    Accessing WebGUI

     

    Confirm Certificate


    Login Interface


    Accept Software License Agreement

    Use device from the web UI


    Posted by at 2 comments:
    Labels: , ,
    Subscribe to: Posts (Atom)