VAPP Creation

Compatibility Matrix of Operating System Modules and Services

VAPPs are arranged with the services necessary for the operation of the system Oplon nevertheless you can install other features to the base operating system previously verified the coexistence of the modules with the services provided by the platform Oplon.

Creating a Virtual Appliance from a Linux image

In many cases it is more convenient to create a Virtual Appliance directly from operating system images provided by cloud provider. This allows you to use Virtual Appliance certified and tested in the environment in which you will find to operate accompanied in most cases also of the Apis that serve to make the Virtual Appliance a tool perfectly integrated.

The creation of a Virtual Appliance in an already installed operating system is very simple and requires very few steps to have a VAPP Oplon perfectly integrated.

The installation can be carried out both online, if the Virtual Appliance has Internet connectivity, both offline, if the Virtual Appliance has no Internet connectivity. The installation of the Virtual Appliance provides to perform certain operations to prepare the setup that will be fully guided.

Supported operating systems for the ADC system are:

  • CentOS Linux 7

  • CentOS Linux 8

  • Linux Ubuntu 14.04 or higher

  1. Create the directory support

    Mkdir/share

    Chmod 777 /share

  1. Creating user administrator

    Groupadd administrator

    Useradd -m -g administrator administrator

  1. Enabling user administrator to run sudo

    vi /etc/sudoers file

    Allow root to run any commands anywhere

    root TO=(to) to

    administrator to=(to) to

  1. Adaptation of host name (the name is at the discretion)

    Hostname OPLONR09

  1. Add the host name in: (name is at the discretion)

    vi /etc/hosts

    127.0.1.1 OPLONR09 OPLONR09.localdomain

  2. Add the host name in: (name is at the discretion)

    vi /etc/hostname

    OPLONR09

  1. Disable If Linux Getenforce test if enforce enabled

    vi /etc/selinux/config

    This file controls the state of SELinux on the system.

    SELINUX= can take one of these three values:

    • Enforcing: SELinux security policy is enforced
    • Permissive: SELinux prints warnings instead of enforcing
    • Disabled: No SELinux policy is loaded

    SELINUX= disabled

    SELINUXTYPE= can take one of three two values:

    • Targeted: Targeted processes are protected
    • Minimum: Modification of the targeted policy. Only selected processes are protected
    • Mls: Multi Level Security protection

    SELINUXTYPE=targeted

  2. Stop the firewall

    systemctl firewalld stop

    systemctl disable firewalld

    Go

    Ufw disable

  3. Verification of not being able to access by root via ssh

    vi /etc/ssh/sshd_config
    LoginGranceTime 2m
    PermitRootLogin no
    StrictMode yes
    MaxAuthTries 6
    MaxSessions 10
    
  4. Restart the ssh service

    systemctl restart sshd.service

  5. Installation of packages needed (dnf versions CentOS 8,Yum CentOS 7)

     dnf -y update
     dnf -y install yum-utils
     dnf -y install wget
     dnf -y install rsync
     dnf -y install bzip2
    

    Ubuntu:

    apt-get update
    apt-get -y install unzip
    apt-get -y install wget
    apt-get -y install rsync
    apt-get -y install bzip2
    reboot
    
  1. Verification of active listeners

For safety reasons make sure there are no processes with active listeners on addresses publicly exposed or 0.0.0.0

Install Virtual Appliance from the Internet

To install the Virtual Appliance from the Internet it is sufficient to perform the following actions:

  1. By root go in /share

    cd /share

  1. wget --no-cache --no-check-certified -n "https://www.oplon.net/LBL_INSTALL_LASTUPDATE.sh"
  1. bash LBL_INSTALL_LASTUPDATE.sh
    ....
    ....
    Login: your_login_oplon
    Password: your_PASSWORD_oplon
    

    Performs the download packages...

  2. If update you will see this message, if the new installation will not required Please consider a backup before performing any update! (this message only if it is an update)

    Do you wish to backup TCOProject files (yes/no/y/n)?

  1. If installation is done in Italy respond yes or y

    Are you an eligible country to use the JCE Stength Unlimited Jurisdiction (yes/no/y/n)?

  1. Update the operating system and loading of packages from the Internet (Answer yes the first time why installs packages useful to Oplon)

    Do you wish to update Operating System (yes/no/y/n)?

  1. At the end of the procedure the setup screen appears on the appliance: image1

First login from Oplon Global Distributed Gateway

From the console it is possible to check the current configuration and DHCP address associated through normal Linux commands (ip addr).

image2

The system Oplon Monitor and Oplon Global Distributed Gateways are by default set up to accept connections from all networks.

image3

It is therefore sufficient to, check with the command "ip addr" an available address and log in from Oplon Management Console, LBL Web Console or from Oplon Global Distributed Gateway on the specified address es.:

To access the services Oplon Global Distributed Gateway type: https://x.x.x.x:4444 (Where x.x.x.x is any address of the system if you have not changed the address 0.0.0.0 or the address you have chosen with lblsetup).

image4

If not modified in phase of setup login: root

image5

Names and conventions Oplon Global Distributed Gateway

The following are the conventional names of the areas used by the graphic interface to which all documentation refers.

image6