Troubleshooting
Problem
How to access the v7000 Management Graphical User Interface when the primary way of access through PDOA System Console is not successful ?
Cause
The PDOA System Console may fail to open V7000 Management Interface because of following reasons:
1. An APAR of System Console where it times out due to a known issue.
2. Unable to communicate between the Client Workstation and PDOA Management Node through firewall if ports are blocked due to strict security policies usage.
Diagnosing The Problem
When V7000 Management Console is accessed through PDOA System console it shows the message in another window showing "Connection is interrupted" and fails.
Resolving The Problem
This procedure relies on SSH Tunnelling which uses the local port forwarding method where the local ports of the client machine which could be a Linux or a Windows Desktop can communicate with V7000 Storage Controller Nodes through the ports of Puredata System for Operational Analytics (PDOA) Management Server.
When port tunneling is enabled between the the workstation and the V7000 Storage Controller nodes, the local ports of the workstation send data to the same ports on management node which further forwards the data received to the V7000 Storage node using the same ports. Ports 80 and 443 of the workstation are used to communicate to the V7000 Storage Controller Nodes.
Here are the steps.
1. Logon to Management Server. Check the /etc/ssh/sshd_config file and see if AllowTcpForwarding is set to yes.
$ grep AllowTcp /etc/ssh/sshd_config
AllowTcpForwarding yes
#AllowTcpForwarding no
2. Find the V7000 Storage Controller IP Addresses mapped to your Management Mode. The query which needs to be run is:
$ grep SAN_FRAME[0-9][0-9]*_IP /pschome/config/xcluster.cfg
SAN_FRAME1_IP = 172.23.1.204
SAN_FRAME2_IP = 172.23.1.207
SAN_FRAME3_IP = 172.23.1.208
3. From your workstation machine, logon to Management Node using the ssh client for e.g. Putty.
4. Go to Change Setting menu while you are logged on. Under SSH and Tunnels, make a tunnel from local port 80 and 443 to the same ports of V7000 Storage Controller.
4a.
4b. Add Local Port 443 in Source Port field and V7000 Storage Controller IP Address and port 443 separated by colon in Destination Field. Click Add
4c. Add Local Port 80 in Source Port field and V7000 Storage Controller IP Address and port 80 separated by colon in Destination Field. Click Add
4d. Click Apply to complete the changes.
In place of 4.a to 4.d alternatively the tunnelling can be enabled via command line using this:
$ ssh -L 80:<v7kip>:80 -L 443:<v7kip>:443 -l <user> <management ip>
where v7kip would be 172.23.1.204 as per the example and management ip would be the Management Server Internet address.
This could be run from Linux terminal or any SSH client.
5. Then open the browser for example Firefox and access the localhost over http.
It will open the Management Interface of the V7000 Controller with IP 172.23.1.204
This method of accessing V7000 can be adopted when you are not able to use PDOA system Console to access V7000 Management GUI Console.
It requires the tunnelling to be done manually for each V7000 Storage Controller which needs to be accessed.
The Interface can be accessed as long as the tunnelling is enabled. If the putty session is closed or it gets disabled, it will need to be setup again.
The steps for SSH tunnelling will needs to be done for each Storage Controller whose Management GUI Console needs to be accessed.
Was this topic helpful?
Document Information
Modified date:
17 October 2019
UID
swg21696787