Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

When your host NIOS-X server is disconnected from the Cloud Services Infoblox Portal or when it experiences issues, you can access the Device UI to troubleshoot the problems. The Device UI is designed to display a comprehensive view of the networking health of your hostserver. You can obtain configuration and connectivity data through the Device UI, and perform corrective actions to address applicable issues.

The Device UI performs the following verification:

  • The IP address of the hostserver
  • DNS service
  • DHCP connection
  • NTP connectivity
  • Access to the Cloud Services Infoblox Portal
  • Time synchronization
  • Explicit proxy test
  • Docker rules
  • Docker Bridge settings
  • Kubernetes Bridge settings
  • Join token validation

After the Device UI completes the verification, it displays the results and status in the Configuration and Administration sections.

Accessing the Device UI

  1. Open a browser window.
  2. Launch the Device UI by entering the IP address of the host server in this format:
    https://<Host Server IP address>
    Note that if there was no DHCP server available in your network, and you did not configure a static IP when you initially set up your  hostyour server, the host server will fall back to the default IP address 192.168.1.2.

  3. Enter the following local access credentials:
    • Username: Enter admin as the login user name for the hostserver.
    • Password: Enter the last eight characters of the serial number for the hostserver. This includes all special characters in the last eight digits of the serial number. For example, if your serial number is AxYz14-893-756, you should enter -893-768.
      • For physical hosts servers (NIOS-X (BloxOne Appliance) Physical Server), you can get the serial number through the Cloud Services Infoblox Portal. The serial number is also printed on the physical appliance server itself and is available through the appliance server console (if you connect the appliance server to a computer monitor).
      • For virtual hosts servers (NIOS-X (BloxOne VM) Virtual Server), you can get the serial number when you connect to the virtual console.

Viewing Device Status and Configuration

When you launch the Device UI, it displays the overall configuration status in the left panel and the configuration details in the right panel

...

  • The OK icon= The service, connection, and settings have been verified and functioning properly.
  • The Not Started icon = The service or connection has not started yet.
  • The FAILED iconImage Modified = The service, connection, and/or settings failed. Take corrective actions by modifying the configuration.
  • The Not Applicable icon = No configuration has been set for this service, therefore, no verification is done until you set up the necessary configuration.

Updating Configuration

In the Configuration panel, the Device UI displays detailed information about the networking and service configurations. You can view the current configuration and connectivity of your host server and fix any problematic areas, if applicable.

Note
titleNotes
  • You must enable local access on the host server before you can make configuration changes to the following settings. For information about local access, see Managing Local Access for HostsServers.
  • If you update any configuration on an host server that has a connection issue with BloxOne Cloud the Infoblox platform and has a secondary interface configured, the secondary interface could be removed from the hostserver.

Network

Your host server must have internet access in order to establish connectivity to the Cloud Services Infoblox Portal.

Select one of the following to set up the network configuration:

DNS Resolvers: You can configure specific DNS resolver(s) that your host server uses to resolve DNS requests. For multiple resolvers, enter the IP addresses separated by commas (,).
Example: 1.1.1.1,8.8.8.8

Note
titleNote
When you add and use a new DNS resolver, the host server uses the new resolver and the default settings will not be retained.

...

  • DHCP: If your network contains a DHCP server, select DHCP to automatically receive a dynamic IPv4 address for the hostserver.
  • Static: If you want to assign a specific IPv4 address to your hostserver, select Static to manually configure the IPv4 address, netmask or CIDR, and the default gateway for the hostserver.

IPv6 Network Mode: Select one of the following for your IPv6 network:

  • DHCP: If your network contains a DHCP server, select DHCP to automatically receive a dynamic IPv6 address for the hostserver.
  • RA: Select this to use router advertisements in your IPv6 network. The  host The server auto-generates a link-local address to communicate with other hosts servers or neighbors on the same network.
  • Auto Select: Select this to allow the system to select the best way to obtain an IPv6 address for the hostserver.
  • Static: If you want to assign a specific IPv6 address to your hostserver, select Static to manually configure the IPv6 address, CIDR, and the default gateway for the hostserver.

Advanced Settings: Expand this section to configure IPv4 and IPv6 MTU (Maximum Transmission Unit) for your network path:

...

The system validates the IP address, DHCP connection, and the DNS service, and the Device UI displays the current status of each component.

HTTPS(S) Proxy

Based on your business needs, you may need to configure an HTTP or HTTPS proxy server to handle HTTP(S) requests from clients over the LAN or Internet.

...

Example: https://joesmith:Welc0me123!@proxy.example.com:443

Time Settings

You can set up specific NTP server(s) with which your appliance server synchronizes time. If you have not configured any NTP server or local DNS resolver, the appliance server uses the Ubuntu NTP server (ntp.ubuntu.org or ubuntu.pool.ntp.org) and BloxOne Cloud Universal DNS (IP: 52.119.40.100). Note that the communication to these services does not go through the HTTPS proxy, and you must ensure that the NTP port (UDP 123) and the DNS port (TCP/UDP 53) are opened on your firewall.

...

Note
titleNote
When you add and use a new NTP server, the host server uses the new NTP server and the default settings will not be retained.

Docker

If your network service is deployed in a Docker container, you must complete the Docker configurations so your appliance server can communicate with your network.

...

Note
titleNote

You can use an IP address for the Docker Bridge in a network no larger than a /24 subnet.

Kubernetes

You can configure the Kubernetes Bridge settings in this section. If the network CIDRs are not configured, the Kubernetes Bridge uses the default IP of 10.42.0.0/16 for the cluster CIDR and 10.43.0.0/16 for the service CIDR. The system conduct a health check on the setting and displays OK if the settings are valid.

A screenshot of the Kubernetes Bridge Settings dialog box. It contains a text field for entering a Cluster CIDR, a text field for entering a Service CIDR, an OK button for the Kubernetes check, and an OK button for closing the dialog box.

Authentication

The Authentication section indicates whether the connection of your  host to the Cloud Services your server to the Infoblox Portal using the join token or serial number is successful or not. A join token is a special-purpose secret used to authenticate an host a server to automatically associate itself with its corresponding user account and establish a connection to the Cloud Services Infoblox Portal. You must first create a join token through the Cloud Services Infoblox Portal, and then assign the token to the corresponding hostserver

The Device UI displays the join token and serial number of the host server in this section. If authentication failed, you can verify the join token and correct in the join token field. If the authentication failed due to an incorrect serial number, you can modify the serial number in the Cloud Services Infoblox Portal. Note that the serial number displayed here is automatically populated from the information you provided either via the Cloud Services Infoblox Portal. You cannot modify the serial number here.

A screenshot of the Authentication dialog box. It contains a text field for entering a join token, a text field for entering a serial number, an OK button for Authentication, and an OK button for closing the dialog box.

Cloud Connectivity

The Cloud Connectivity status shows you whether your host server has successfully established a connection to the Cloud Services Infoblox Portal. If the connectivity status is "Failed," check all failed services and take corrective actions.

Administrating the

...

Server

In the Administration panel, you can restart your hostyou server, reset the host server to factory settings, collect the support bundle for troubleshooting purposes. as well as enabling and disabling a secure terminal connection between the BloxOne instance NIOS-X servers and the debugging interface (debug CLI).

Device Restart

In the Device Restart section, click Restart to restart your hostserver. When a restart is initiated, all processes are down, and no further logins are allowed on the hostserver. The host server will close all open files, stop running processes, and restart the system. 

Factory Reset

In the Factory Reset section, click Reset to initiate a factory reset for the hostserver. When you start a factory reset, it will reinstate the initial state of the hostserver. All configuration will be set to the initial factory-provided settings. The software will be reset to the initial version. Confirm you really want to reset your host you server before resetting it because this action cannot be undone.

Support Bundle

In the Support Bundle section, click Collect to start collecting logs and configurations about your environment, so Technical Support can use the information for troubleshooting. Once the system starts collecting information, the following dialog appears. You can click Cancel to stop the collection.

The Collect Support Bundle dialog boxImage Modified

When the system completes collecting information, the following dialog appears and you can click Download to save the Support Bundle to your computer.

The Download Support Bundle dialog boxImage Modified

SSH

In the SSH section, you can enable or disable a secure terminal connection on port 2022 between your BloxOne host server and the debugging interface (debugging CLI).

When you have issues in deploying new BloxOne Infoblox platform images or experiencing any issues with the cloud connectivity, you can troubleshoot issues using the debugging CLI. When you enable the secure connection, you can log in to the debugging CLI and use supported CLI commands to troubleshoot issues.

You can access the debugging CLI via the following:

  • Serial console
  • SSH client

Serial Console

To access the debugging CLI via the serial console, do the following.

  1. Connect to the serial console of your hostserver.
  2. Once you get health checks on the serial console as illustrated in the screenshot below, press Ctrl+c to connect to the hostserver. You will be redirected to the debugging CLI login prompt.

    A screenshot of the debugging CLI login prompt.
  3. Use the following credentials to log in:
    • Login: admin
    • Password: The last 8 digits of the serial number (without spaces)

      A screenshot of the login prompt on the debugging CLI 

SSH

You can enable or disable a secure terminal connection on port 2022 to access the debugging CLI from the Device UI.

To access the debugging CLI when the host server is online, do the following:

  1. Log in to the Cloud Service Portal.
  2. Enable local access on the hostserver. For information, see Managing Local Access for HostsServers.
  3. Launch and log in to the Device UI. For information, see Accessing the Device UI in this topic.
  4. Go to the SSH section and click Enable. Once you enable SSH, the Disable button appears.
    A screenshot of the debugging CLI for a host that is online
  5. Use an SSH client to connect to the debug CLI on port 2022 (example: ssh -p 2022 admin@[remote_hostserver_ip]).
  6. Use the following credentials to log in to the debug CLI:
    • Login: admin
    • Password: The last 8 digits of the serial number (without spaces).

To access the debugging CLI when the host server is offline, do the following:

  1. Launch and log in to the Device UI. For information, see Accessing the Device UI in this topic.
  2. Go to the SSH section and click Enable. Once you enable SSH, the Disable button appears.
    A screenshot of the debugging CLI for a host that is offline
  3. Use an SSH client to connect to the debug CLI on port 2022 (example: ssh -p 2022 admin@[remote_hostserver_ip]).
  4. Use the following credentials to log in to the debug CLI:
    • Login: admin
    • Password: The last 8 digits of the serial number (without spaces)

Supported Debug CLI Commands

Note

Run the help command to check supported debug CLI commands and their usage.

...

Supported CLI CommandDescription
clearClear the terminal screen
dfGet file system disk space usage
digDNS lookup utility
Restricted argument: -f
duEstimate file space usage
exitExit the debug CLI
freeDisplay the amount of free and used memory in the system
helpDisplay the list of supported CLI commands
ifconfigDisplay a network interface
Allowed argument: -a
iostatReport CPU statistics and input/output statistics for devices and partitions.
ipDisplay routing, network devices, interfaces and tunnels
Restricted arguments: add, del, set, flush, change, append, replace, update, -b, - -b, -batch, - -batch
nslookupQuery internet name servers
ntpqStandard NTP query. Cannot execute only the ntpq command. You must include at least one argument.
Restricted argument: -i
pingSend ICMP ECHO_REQUEST to network hostsservers.
routeDisplay the IP routing table
Restricted arguments: add, del
service-config

Display and transfer service config file. Run service_config help to see the desired format of the command.

Examples:

  • To view: service_config view [servie_name/service_type]
  • To transfer: service_config transfer [servie_name/service_type] [-P open_ssh_port ] user@remote_hostserver_ip:/path_to_copy
ssThe utility for investigating sockets
Restricted arguments: -F, - -filter
ssh

Enable or disable ssh on the hostserver.
Allowed arguments :

  • enable: Enable ssh on the hostserver.
  • disable: Disable ssh on the hostserver.
  • status: Check the current status of the ssh
tcpdump

Get traffic on a network
Restricted arguments: -w
Context timeout: 600 sec

topDisplay Linux processes. The top command will not take any arguments and will run for one iteration in batch mode by default.
traceroutePrint the route packets traced to the network hostserver.
transfer_sb

Transfer support bundle to the remote host server using the SCP protocol. Run transfer_sb help to see the desired format of the command.

Example: transfer_sb [-P open_ssh_port ]user@remote_hostserver_ip:/path_to_copy

vmstatReport virtual memory statistics

...