Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Please refer to the link https://support.aviznetworks.com/hc/en-us/articles/10268234313997-ONES-Image-Download for downloading latest version of ONES Application
NOTE: You are required to sign-up on https://support.aviznetworks.com/hc/en-us for getting access to the download page.
ONES provides the following subscriptions to manage and monitor the devices.
32
Support up to 32 devices
64
Support up to 64 devices
128
Support up to 128 devices
256
Support up to 256 devices
512
Support up to 512 devices
1024
Support up to 1024 devices
Free(30 Days Trial)
Support up to 8 devices
Work with Aviz Sales/Support contact to create an account on Aviz Networks Support Portal
Login to with your account credentials
Click on the Downloads section, under ONES, click to download ONES Release 1.3
Copy ONES Release 1.3 package (qcow2) to KVM Hypervisor Server
If your host server has Ubuntu Desktop and virt-manager installed you can use it to deploy the VM. Make sure you can start the Virtual Machine Manager and that it connects successfully to the local hypervisor.
Creating a VM with virt-manager is very straightforward, Use the following steps to deploy the ONES-Application
File -> New Virtual Machine -> Import existing disk image -> Forward
Now the ONES Application is ready to use
Work with Aviz Sales/Support contact to create an account on Aviz Networks Support Portal
Login to with your account credentials
Click on the Downloads section, under ONES, click to download ONES Release 1.3
Username: root
Password: Admin@123Username: ones
Password: Admin@123On the ONES Application server, go to ONES-1.3/ones_fm_agent
root@ones-application:~$ cd /ONES-1.3/ones_fm_agent
Enter device details (Management IP, Username, Password ) in device_info.csv
root@ones-application/ONES-1.3/ones_fm_agent:~$ vi device_info.csv
Save the file
Execute the installation script
root@ones-application/ONES-1.3/ones_fm_agent:~$ python3 deploy_fmcli.py "install"
Verify the Installation success by running the fmcli command on individual devices
root@Switch:~$ sudo fmcli
ip,user,passwd
10.4.4.75,admin,YourPaSsWoRd
10.4.4.76,admin,YourPaSsWoRd
10.4.4.77,admin,YourPaSsWoRd
...
...
...root@Switch:~$ sudo fmcli
fmcli# [{'ip': '10.4.4.61', 'passwd': 'YourPaSsWoRd', 'user': 'admin'}]
Operation = install
##### params = {'ip': '10.4.4.61', 'passwd': 'YourPaSsWoRd', 'user': 'admin'} #####
###############Connecting to switch###############
<paramiko.client.SSHClient object at 0x7f44742fda90>
Connection to switch 10.4.4.61 successfull.....................
/home/neeraj.kamboj/ONES/ones_fm_agent
Creating work directory on the device 10.4.4.61........
...
#################### Installing FMCLI ######################
...
...
FM-Agent installed successfully on the device 10.4.4.61........ONESv1.3 Agent support auto-discovery feature
ONESv1.3 Agent support to send telemetry on multiple controllers
Restrict IP is enabled by default in ONESv1.3
Using this feature agent will discover the ONES Controller and will update the entry on ONES App with all the feature metrics
Need to add a few inputs while installing agent
Controller IP //To restrict the telemetry streaming
Device Credentials
Layer
On the Application machine, go to ONES-1.3/ones_t_agent folder
root@ones-application:~$ cd /ONES-1.3/ones_t_agent
Enter device details (Management IP, Username and Password ) in device_info.csv
root@ones-application/ONES-1.3/ones_t_agent:~$ vi device_info.csv
Save the File
Executing the installation script can be used for installing a telemetry agent on one or more devices in the data centre.
root@ones-application/ONES-1.3/ones_t_agent:~$ python3 ones_agent_parallel_installer.py
Script asks to to put the Controller IP to use auto-discovery feature
User can choose the restriction to send telemetry to collector IP only
NOS
ASIC
Switches
Community SONiC
Cumulus & Arista platforms are considered by ONES as Agent-less and supports metrics available using NVUE and eOS APIs
SONiC-based switches require ONES Agents (Agent-based) to be installed on the switch being monitored, as a pre-requisite for ONES Telemetry and Orchestrator based functions to work.
ONES Telemetry Agent
ONES Orchestrator Agent
Proprietary NOS like Arista EOS, Cumulus, and Cisco NX-OS does not require an ONES Agent and instead leverage (Agent-less) feature. OpenConfig extends APIs that provide Network Telemetry information about the resources being monitored via (gRPC Network Management Interface) protocol to the ONES Application
ONES does not support Orchestrator-based functions on Proprietary NOS (non-SONiC).
SSH access
SONiC versions beyond 202012 or 202111 are supported
Only x86 intel-based architectures are supported
NVIDIA, Broadcom
SN2010, SN4700, SN 2700, SN2100, SN3700, DellEMC-S5212f-P-25G
SONiC Distros
Broadcom
EC9716, EC4630, EC7326, RA-B6510-48V8C(Ragile Networks), CELESTICA-BELGITE
Cumulus*
NVIDIA
SN2010, SN4700, SN 2700, SN2100, SN3700
Arista*
Broadcom
DCS-7010T-48
Region
azid
brickid
rackid
ip,user,passwd,layer,region,azid,brickid,rackid
10.4.4.77,admin,YourPaSsWoRd,Spine,SanJose,1,1,1
10.4.4.78,admin,YourPaSsWoRd,Leaf,SanJose,1,1,1
...
...
...Enter the ip address of collectors to auto-discover. Do not enter more than 2. Eg - 10.1.1.10, 10.2.2.5 : 10.4.4.11Do you want to restrict access only to provided collector ip?
Note: Providing Yes will restrict access to agent only with the provided collector IP Address
Enter Yes/No : Yesroot@ones-application/ONES-1.3/ones_t_agent:~$ python3 ones_agent_parallel_installer.py
Enter the ip address of collectors to auto-discover. Do not enter more than 2. Eg - 10.1.1.10, 10.2.2.5 : 10.4.4.11
Note: Providing Yes will restrict access to agent only with the provided collector IP Address
Enter Yes/No : Yes
[{'ip': '10.4.4.77', 'user': 'admin', 'passwd': 'YourPaSsWoRd', 'layer': 'Spine', 'region': 'SanJose', 'azid': '1', 'brickid': '1', 'rackid': '1', 'installation_instance': 1, 'agentip': '10.4.4.77', 'collectorip': '10.4.4.11'}, {'ip': '10.4.4.78', 'user': 'admin', 'passwd': 'YourPaSsWoRd', 'layer': 'Leaf', 'region': 'SanJose', 'azid': '1', 'brickid': '1', 'rackid': '1', 'installation_instance': 1, 'agentip': '10.4.4.78', 'collectorip': '10.4.4.11'}]
###############Connecting to switch###############
###############Connecting to switch###############
Connection to switch 10.4.4.77 successful.....................
Looking for previous installation........................
avizdock/ones-agent:v1.3.0
...
...
...
...
ones-agent.service file copied successfully on the device 10.4.4.77........
##################################################################
ones-agent.service file copied successfully on the device 10.4.4.78........
##################################################################
Deployment of ones-agent to switch 10.4.4.77 is successful
Deployment of ones-agent to switch 10.4.4.78 is successful
These steps will guide a user how to install a tar-ball package on base Linux based machine
Enable super-user mode
user@ones-application:~$ sudo su
Create a directory for ONESv1.3
user@ones-application:~$ mkdir ONES-1.3
Extract the contents of the downloaded ONES Installer tar.gz file
root@ones-application:~$ tar -xvzf ONES-1.3.tar.gz -C ONES-1.3
Go to ONES-1.3 folder on the server machine
root@ones-aplication:~$ cd ONES-1.3
Run ones-installer.sh to Install the ONES application function
root@ones-application:~/ONES-1.3$ ./ones-installer.sh
By default, the installer has a license for 8 devices upto 30days
ONESv1.3 support SSL certificate integration
User can choose YES if the User wants to integrate their own SSL certificate
3. The installation allows a user to enable DB backup
Users can choose the local or remote location to backup the database
By-Default application creates a database backup in every 86400 seconds(1 day), but user can modify it as per the requirement
Local & Remote Backup
ONESv1.3 support certificate-based authentication between ONES App and devices for GNMI and Auto-discovery
For agent auto-discovery agent will act as a client and the collector as a server. For normal gnmi communication, the agent will act as a server and the collector as a client. Need certificates based on this.
The user needs to provide the certificate path and replace the key name with the path of the certificate to be used here
NOTE: The system might have multiple IP addresses, so the user can use any one IP to access ONES-UI.
Installation begins
Access ONES Application Web GUI from a supported browser using https://<host-ip>
For Trail, user can choose Start A Trial (valid for 30days)
For Activation, user can choose Activate License if the user has an activation key of any subscription
Use Default credentials as below;
Username: superadmin
Password : Admin@123
After Resetting the password use new credentials to login
You will see the default Dashboard → Hardware view
Share ONES installation ID to the AVIZ support team
As per PO, the AVIZ team will share the Activation key
Paste the activation key and Activate
Work with Aviz Sales/Support contact to create an account on Aviz Networks Support Portal
Login to with your account credentials
Click on the Downloads section, under ONES, click to download ONES Release 1.3
OVA/OVF Package: OVA can import in
VMware workstation/Fusion
ESXI Server
Virtual-Box
QCOW2 & OVA, both packages are supported for an upgrade to latest version
Follow the Steps to upgrade the ONES to New Version
VM packages do not support upgrades from one VM to another VM once the VM is deployed in the network, then the ONES tar-ball file can be used to upgrade it.
NOTE: for non-SONiC switches,
OpenConfig feature on its NOS needs to be enabled for Network Visibility (Telemetry Data Streaming)
Network Orchestration is not supported
SONiC NOS Upgrade could be done either via
ONES UI (Inventory-->Devices)
Instead of using FM - Orchestrator Agent
Orchestrator Agent takes a backup of FMCLI, ONES Agents and associated services to the /host folder.
After a successful upgrade, Orchestrator Agent restores these files
Traditional means (ZTP, sonic-installer CLI)
The user needs to reinstall ONES Agents again
ONES Function
Device/Switch Count
Telemetry for Visibility
1024
Orchestration
64
File to install on Ubuntu
ONES 1.3 Installation package
File to install on VMware, ESXI, vSphere, and vCenter setup
ONES 1.3 OVA
File to install on Hypervisor, KVM, LibVirt Manager
ONES 1.3 QCOW2
Copy ONES Release 1.3 package (tar.gz) to ONES Application machine
Follow the next page to execute a successful installation
Arista-DCS-7010T(config)#management api gnmi
Arista-DCS-7010T(config-mgmt-api-gnmi)#transport grpc default
Arista-DCS-7010T(config-gnmi-transport-default)#provider eos-native
Arista-DCS-7010T(config-mgmt-api-gnmi)#end
Arista-DCS-7010T#show management api gnmi
Octa: enabled
Transport: GRPC
Enabled: yes
Server: running on port 50052, in default VRF
SSL profile: SELFSIGNED
QoS DSCP: none
Authorization required: no
Accounting requests: no
Certificate username authentication: no
Notification timestamp: last change time
Listen addresses: ::
Transport: default
Enabled: yes
Server: running on port 6030, in default VRF
SSL profile: none
QoS DSCP: none
Authorization required: no
Accounting requests: no
Certificate username authentication: no
Notification timestamp: last change time
Listen addresses: ::
netq config add agent gnmi-enable true
netq config add agent opta-enable false
netq config add agent gnmi-port 9339
netq config restart agent
netq config status agent
netq config add agent gnmi-port 50052
netq config restart agent
netq config status agent
cumulus@cumulus:mgmt:~$ cat /etc/netq/netq.yml
netq-agent:
is-gnmi-enabled: true
is-opta-enabled: false
netq-gnmi:
gnmi_port: 9339sudo ln -s /etc/nginx/sites-{available,enabled}/nvue.conf
sudo sed -i 's/listen localhost:8765 ssl;/listen \[::\]:8765 ipv6only=off ssl;/g' /etc/nginx/sites-available/nvue.conf
sudo systemctl restart nginxbash$ ssh username@myswitch
Password: <passw0rd>
myswitch> enable
myswitch# configure terminal
myswitch(config)# management api http-commands
myswitch(config-mgmt-api-http-cmds)# no shutdown
myswitch(config-mgmt-api-http-cmds)# show management api http-commands
Enabled: Yes
HTTPS server: running, set to use port 443
HTTP server: shutdown, set to use port 80
Local HTTP server: shutdown, no authentication, set to use port 8080
Unix Socket server: shutdown, no authentication
VRFs: defaultChoose NO, if the user wants to use a self-signed certificate that is integrated into ONES package.
It has a range of 1 to 3 and once it will add one more it will remove the first copy of the database,
User can modify the number of backup files at the time of installation
By-default ONES create ./backup directory to maintain local database
Installing ONES Agents on SONiC Switches for Orchestrator and Telemetry
Enabling OpenConfig on non-SONiC Switches for Telemetry
The installer allows a default capability for managing 8 devices without a license. Beyond this, the following license key is required for proceeding with the Installation;
ONES Application License (As per device count)
To obtain a license, contact support@aviznetworks.com providing the below details;
License Duration - In Years (1-5)
Devices Count - 8, 32, 64, 128, 256, 512 or 1024
ONES installation ID
Email ID: (For Account creation)
In the current release, ONES can support managing up to 1024 devices. For ONES Application Installation, the system hardware requirements vary based on the number of devices to manage;
8/16/32/64
x86/x64 based,
4-core CPU
16GB
160GB/320GB/640GB/1.2 TB
128
INTEL(E5-1607 v2)/AMD,
4 cores
32GB
3 TB or more
256
Ubuntu 18.0 or later
docker, docker-compose
python3, python3-pip
paramiko
scp
Ubuntu Server
Installer file (Version 18 or higher)
lsb_release -a
Update to latest packages
sudo apt-get update
NA​
Install Docker
sudo apt-get install docker.io
​docker ps​
ONES Web GUI
443
Switch Access over SSH
22
ONES Monitoring
50052
gNMI Gateway (Telemetry)
9339
ONES Telemetry Database
5432
SSH is enabled
Network Reachability from ONES Application
OpenConfig feature is enabled (for non-SONiC Switches)
Google Chrome version 107 or later
Mozilla Firefox version 106 or later
Installing Open Networking Enterprise Suite (ONES)
..................................................
ONES is getting installed for the first time, choose appropriate options when prompted...
....................
Installing prerequisites for ONES application
....................
....................
....................
....................
Installing ONES application...
Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: n
Using self signed certificates...
Local backup:
Do you want to enable DB backups? [y/n]y
Where do you want to store the backups? [local/remote]: local #local keyword trigger local database on server
Enter the backup directory: ./backups #Enter the server directory in which user wants to take backup
Enter the number of backups (between 1 and 3) to retain (Older backups will be deleted): 1 #Enter the number of backup user wants to create
Enter the backup interval in seconds (3600 seconds or higher): 86400 #Enter the value in seconds to take a backup Remote backup:
Do you want to enable DB backup feature? [y/n]: y
Where do you want to store the backups? [local/remote]: remote #remote keyword trigger remote database on server
Please make sure the remote server is reachable via SSH
Enter the remote machine IP: 10.0.0.1
Enter the remote machine username: admin
Enter the remote machine password:
Enter the backup directory: ~/backups #Enter the remote server directory in which user wants to take backup
Backup is being done in 10.0.0.1 at ~/backups
Enter the number of backups (between 1 and 100) to retain (Older backups will be deleted): 5 #Enter the number of backup user wants to create
Enter the backup interval in seconds (3600 seconds or higher): 86400 #Enter the value in seconds to take a backup No:
Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: nYes:
Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: y
Enter the path to the ca-cert.pem file: ca-cert.pem
Enter the path to the server-cert.pem file: server-cert.pem
Enter the path to the server-key.pem file: server-key.pem
Enter the path to the client-cert.pem file: client-cert.pem
Enter the path to the client-key.pem file: client-key.pem
Proceeding with certificates for Agent Auto Registration
Enter the path to the ca-cert-reg.pem file: ca-cert-reg.pem
Enter the path to the server-cert.pem file: server-cert.pem
Enter the path to the server-key.pem file: server-key.pem
Enter the path to the client-cert.pem file: client-cert.pem
Enter the path to the client-key.pem file: client-key.pem
Installing Open Networking Enterprise Suite (ONES)
..................................................
ONES is getting installed for the first time, choose appropriate options when prompted...
....................
Installing prerequisites for ONES application
....................
....................
....................
....................
Installing ONES application...
Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: n
Using self signed certificates...
Do you want to enable DB backup feature? [y/n] : y
Where do you want to store the backups? [local/remote]: local
Enter the backup directory: ./backups
Enter the number of backups(between 1 and 3) to retain (Older backups will be deleted) : 1
Enter the backup interval in seconds(3600 seconds or higher) : 86400
Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: n
Setting up the environment and loading essential dockers...
d7802b8508af: Loading layer [==================================================>] 138.2MB/138.2MB
66ac3aec5226: Loading layer [==================================================>] 53.48MB/53.48MB
8515c97b6098: Loading layer [==================================================>] 2.048kB/2.048kB
acad07e3b593: Loading layer [==================================================>] 85.56MB/85.56MB
...
...
...
Name Command State Ports
--------------------------------------------------------------------------------------------------------------------
api-server java -jar /app/apiserver.jar Up 0.0.0.0:8080->8080/tcp,:::8080->8080/tcp
broker /etc/confluent/docker/run Up 0.0.0.0:29092->29092/tcp,:::29092->29092/tcp,
0.0.0.0:9092->9092/tcp,:::9092->9092/tcp,
0.0.0.0:9101->9101/tcp,:::9101->9101/tcp
docker python3 app.py Up
kafka-connect /etc/confluent/docker/run Up (healthy) 0.0.0.0:8083->8083/tcp,:::8083->8083/tcp,
9092/tcp
ksqldb-server /usr/bin/docker/run Up 0.0.0.0:8088->8088/tcp,:::8088->8088/tcp
ones-collector java -jar /app/collector.jar Up 0.0.0.0:50053->50053/tcp,:::50053->50053/tcp,
8093/tcp
ones-collector-db /docker-entrypoint.sh postgres Up 0.0.0.0:5432->5432/tcp,:::5432->5432/tcp,
8008/tcp, 8081/tcp
ones-db-backup python3 app.py Up
ones-fm /bin/sh -c { gunicorn --wo ... Up 0.0.0.0:8787->8080/tcp,:::8787->8080/tcp
ones-fm-db docker-entrypoint.sh postgres Up 0.0.0.0:2345->5432/tcp,:::2345->5432/tcp
ones-gateway ./gnmi-gateway -TargetLoad ... Up 0.0.0.0:9339->9339/tcp,:::9339->9339/tcp
ones-pty-server docker-entrypoint.sh node ... Up 0.0.0.0:8885->8885/tcp,:::8885->8885/tcp
ones-ui docker-entrypoint.sh node ... Up 3002/tcp, 0.0.0.0:443->443/tcp,:::443->443/tcp
schema-registry /etc/confluent/docker/run Up 0.0.0.0:8081->8081/tcp,:::8081->8081/tcp
stream-processor java -jar /app/stream-proc ... Up 8093/tcp
zookeeper /etc/confluent/docker/run Up 0.0.0.0:2181->2181/tcp,:::2181->2181/tcp,
2888/tcp, 3888/tcp
Finishing up ONES Installation...
............................................................Installed ONES application successfully...
....................
Open the ONES application at https://<host-ip>x86/x64 based
8-core CPU
64GB
6 TB or more
512
INTEL(E5-1607 v2)/AMD,
16 cores or higher
64GB
12 TB or more
1024
INTEL(E5-1607 v2)/AMD,
32 cores or higher
128GB
20 TB or more
Install Docker-compose
sudo apt-get install docker-compose
docker-compose version​
Install Python3
sudo apt-get install python3
python3 –-version
Install Python3-pip
sudo apt-get install python3-pip
pip3 –-version
Install Paramiko
sudo apt-get install python3-paramiko
​pip show paramiko
Install SCP-Client
sudo pip3 install scp
pip show scp
ONES Orchestrator
8787
ONES Orchestrator Database
2345
pty-server
8885
API-Server
8080
stream-processer
8093
ksqldb-server
8088
kafka-connect
8083
schema-registry
8081
broker
29092, 9101, 9092
Zookeeper
2181
ONES Collector
50053
