The installer file automatically detects & processes fresh installation or upgrade to the new version
While upgrading there is no dependency of prevision version files,
Once the upgrade process is completed, user manually have to delete the previous version files/Packages from the device, Script do not touch old version files
By default, the installer does not provide any license, user needs to contact AVIZ support Team.
ONESv3.0 support SSL certificate integration
User can choose YES if the User wants to integrate their own SSL certificate
Installing Open Networking Enterprise Suite (ONES)..................................................Installing prerequisites for ONES application................................................................................Installing sshpass...dpkg: warning: downgrading sshpass from 1.09-1 to 1.06-1(Reading database ... 116659 files and directories currently installed.)Preparing to unpack .../sshpass_1.06-1_amd64.deb ...Unpacking sshpass (1.06-1) over (1.09-1) ...Setting up sshpass (1.06-1) ...Processing triggers for man-db (2.10.2-1) ...ONES is getting installed for the first time, choose appropriate options when prompted.......................Installing ONES application...Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: yEnter the path to the private key file: /home/aviz/server.pemEnter the path to the certificate file: /home/aviz/server.crt.pem
Note* Replace the Private key & certificate path to correct location
Choose No, if the user wants to use a self-signed certificate that is integrated into ONES package
Installing Open Networking Enterprise Suite (ONES)..................................................Installing prerequisites for ONES application................................................................................Installing sshpass...dpkg: warning: downgrading sshpass from 1.09-1 to 1.06-1(Reading database ... 116659 files and directories currently installed.)Preparing to unpack .../sshpass_1.06-1_amd64.deb ...Unpacking sshpass (1.06-1) over (1.09-1) ...Setting up sshpass (1.06-1) ...Processing triggers for man-db (2.10.2-1) ...ONES is getting installed for the first time, choose appropriate options when prompted.......................Installing ONES application...Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: nUsing self signed certificates...
Enable or disable the ONE DL feature
User can choose YES if the User wants to enable ONES DataLake feature.
Do you want to enable ONE-DL feature? [y/n]: ySince ONE-DL configuration has been chosen, please provide the information below...Enter EC2 ONE-DL Backend Public DNS Endpoint: <Path>
User can choose No if need not to enable ONES DataLake feature
Do you want to enable ONE-DL feature? [y/n]: n
The installation allows a user to enable DB backup
Users can choose the local or remote location to backup the database
By default, the application creates a database backup every 86400 seconds(1 day), but the user can modify it as per the requirement
Local and Remote Backup
By-default application creates 1 backup for local and for remote,
It has a range of 1 to 3 and once it will add one more it will remove the first copy of the database,
User can modify the number of backup files at the time of installation
By-default ONES create ./backup directory to maintain local database
Local backup:Do you want to enable DB backups? [y/n]yWhere do you want to store the backups? [local/remote]: local #local keyword trigger local database on serverEnter the backup directory: ./backups #Enter the server directory in which user wants to take backupEnter the number of backups (between 1 and 3) to retain (Older backups will be deleted): 1 #Enter the number of backup user wants to createEnter the backup interval in seconds (3600 seconds or higher): 86400 #Enter the value in seconds to take a backup
Remote backup:Do you want to enable DB backup feature? [y/n]: yWhere do you want to store the backups? [local/remote]: remote #remote keyword trigger remote database on serverPlease make sure the remote server is reachable via SSHEnter the remote machine IP: 10.0.0.1Enter the remote machine username: adminEnter the remote machine password: Enter the backup directory: ~/backups #Enter the remote server directory in which user wants to take backupBackup is being done in 10.0.0.1 at ~/backupsEnter the number of backups (between 1 and 100) to retain (Older backups will be deleted): 5 #Enter the number of backup user wants to createEnter the backup interval in seconds (3600 seconds or higher): 86400 #Enter the value in seconds to take a backup
ONESv3.0 support certificate-based authentication between ONES App and devices for GNMI and Auto-discovery
For agent auto-discovery agent will act as a client and the collector as a server.
For normal gnmi communication, the agent will act as a server and the collector as a client. Need certificates based on this.
No:Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: n
Yes:Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: yEnter the path to the ca-cert.pem file: ca-cert.pemEnter the path to the server-cert.pem file: server-cert.pemEnter the path to the server-key.pem file: server-key.pemEnter the path to the client-cert.pem file: client-cert.pemEnter the path to the client-key.pem file: client-key.pemProceeding with certificates for Agent Auto RegistrationEnter the path to the ca-cert-reg.pem file: ca-cert-reg.pemEnter the path to the server-cert.pem file: server-cert.pemEnter the path to the server-key.pem file: server-key.pemEnter the path to the client-cert.pem file: client-cert.pemEnter the path to the client-key.pem file: client-key.pem
The user needs to provide the certificate path and replace the key name with the path of the certificate to be used here
ONES Application support IP-based Access & FQDN Access
Enter the ONES App URL: https:// #Replace the input with IP or FQDN
IP based
Enter the ONES App URL: https://192.168.1.1
FQDN based
Enter the ONES App URL: https://ones.aviznetworks.com
ONESv3.0 support password-based(MD5) authentication between ONES App and devices for GNMI and Auto-discovery
User can choose yes if need password based authentication
Do you want to enable agent authentication ? [y/n]: yEnter the ones-agent username: adminEnter the ones-agent password: YourPaSsWoRd
User can choose no if there no requirement of authentication
Do you want to enable agent authentication ? [y/n]: n
Users cannot simultaneously select both certificate-based authentication and password-based authentication between the agent and the ONES application. They must choose one authentication method at a time for securing communication between the agent and the ONES app if required.
Installation begins
root@aviz:/home/aviz/GA_3.0/ones-1725445069-onprem# ./ones-installer.shInstalling Open Networking Enterprise Suite (ONES)..................................................Installing prerequisites for ONES application................................................................................Installing sshpass...dpkg: warning: downgrading sshpass from 1.09-1 to 1.06-1(Reading database ... 116659 files and directories currently installed.)Preparing to unpack .../sshpass_1.06-1_amd64.deb ...Unpacking sshpass (1.06-1) over (1.09-1) ...Setting up sshpass (1.06-1) ...Processing triggers for man-db (2.10.2-1) ...ONES is getting installed for the first time, choose appropriate options when prompted.......................Installing ONES application...Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: yEnter the path to the private key file: /home/aviz/server.pemEnter the path to the certificate file: /home/aviz/server.crt.pemDo you want to enable ONE-DL feature? [y/n]: nDo you want to enable DB backup feature? [y/n]: yWhere do you want to store the backups? [local/remote]: remote Please make sure the remote server is reachable via SSHEnter the remote machine IP: 10.0.0.1Enter the remote machine username: adminEnter the remote machine password: Enter the backup directory: ~/backups Backup is being done in 10.0.0.1 at ~/backupsEnter the number of backups (between 1 and 100) to retain (Older backups will be deleted): 5Enter the backup interval in seconds (3600 seconds or higher): 86400Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: nEnter the ONES App URL for Rule-Engine Alert [https://<host-ip or domain>]: https://10.20.0.80Do you want to enable agent authentication ? [y/n]: yEnter the ones-agent username: adminEnter the ones-agent password: YourPaSsWoRdSetting up the environment and loading essential dockers...2bb80ba200dd: Loading layer [==================================================>] 68.32MB/68.32MB2a9822159dc0: Loading layer [==================================================>] 2.048kB/2.048kB2db080db4c83: Loading layer [==================================================>] 143.2MB/143.2MB5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kBLoaded image: avizdock/ones-collector:v3.0.0f99617b4857d: Loading layer [==================================================>] 2.081GB/2.081GB598cad3fc7f2: Loading layer [==================================================>] 4.096kB/4.096kBa2cac5263de0: Loading layer [==================================================>] 1.536kB/1.536kB4d9c9e7cdef2: Loading layer [==================================================>] 3.584kB/3.584kBa76669129b6a: Loading layer [==================================================>] 98.3kB/98.3kB5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kB85f57de39b33: Loading layer [==================================================>] 7.68kB/7.68kB21cdd2e0b4ef: Loading layer [==================================================>] 2.048kB/2.048kB12f4e967e13f: Loading layer [==================================================>] 10.75kB/10.75kB5e93cea4ec38: Loading layer [==================================================>] 11.26kB/11.26kBce0cf0b53390: Loading layer [==================================================>] 77.59MB/77.59MB0344a1894c78: Loading layer [==================================================>] 161.2MB/161.2MBLoaded image: avizdock/timescaledb:latestones-collector-db-data0280eb3c2596: Loading layer [==================================================>] 1.536kB/1.536kB6dde90cacd10: Loading layer [==================================================>] 86.02kB/86.02kB2aa52ba420da: Loading layer [==================================================>] 296.4MB/296.4MBbe57349b17a3: Loading layer [==================================================>] 6.353MB/6.353MB0ec41b6d891c: Loading layer [==================================================>] 2.349MB/2.349MBd5f95e6a3021: Loading layer [==================================================>] 115.2MB/115.2MB05f76cb3b696: Loading layer [==================================================>] 6.619MB/6.619MB2511c56b8490: Loading layer [==================================================>] 5.766MB/5.766MBLoaded image: avizdock/ones-ui:v3.0.0ones-ui-data952d1ba246e9: Loading layer [==================================================>] 1.536kB/1.536kBaa5bb983ae7a: Loading layer [==================================================>] 3.072kB/3.072kB29500ccb4fdd: Loading layer [==================================================>] 243MB/243MB0d1d24f6d697: Loading layer [==================================================>] 223.8MB/223.8MB370ce41daeb2: Loading layer [==================================================>] 6.291MB/6.291MB53f7f3605d6c: Loading layer [==================================================>] 2.992MB/2.992MB05dc8de6e8f6: Loading layer [==================================================>] 158.2kB/158.2kBLoaded image: avizdock/pty-server:v3.0.064a5ccd06307: Loading layer [==================================================>] 2.048kB/2.048kBca4c2e6e9d9e: Loading layer [==================================================>] 1.203MB/1.203MB5296c36b9ebf: Loading layer [==================================================>] 862.7MB/862.7MB5943159c673a: Loading layer [==================================================>] 41.97MB/41.97MBLoaded image: avizdock/ones-gateway:v3.0.04f28916f37e9: Loading layer [==================================================>] 129.5MB/129.5MB2a5df58ba97f: Loading layer [==================================================>] 29.52MB/29.52MBc7fd29476165: Loading layer [==================================================>] 156.6MB/156.6MBc7e74d262dff: Loading layer [==================================================>] 38.24MB/38.24MBe851c0af7c3d: Loading layer [==================================================>] 359.7MB/359.7MB2ef53f757b83: Loading layer [==================================================>] 40.77MB/40.77MBbc8e8be8d143: Loading layer [==================================================>] 2.048kB/2.048kB83fa77e03e24: Loading layer [==================================================>] 59.91MB/59.91MB5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kBd0feb9122054: Loading layer [==================================================>] 2.56kB/2.56kB7219b0fcbd58: Loading layer [==================================================>] 2.56kB/2.56kBc529643b8d45: Loading layer [==================================================>] 527.4MB/527.4MBd69f335ef8e6: Loading layer [==================================================>] 44.73MB/44.73MB1644861feacd: Loading layer [==================================================>] 145.9kB/145.9kBLoaded image: avizdock/ones-fm:v3.0.0d4fc045c9e3a: Loading layer [==================================================>] 7.667MB/7.667MBb150abefba25: Loading layer [==================================================>] 12.29kB/12.29kB93cb05de897b: Loading layer [==================================================>] 1.536kB/1.536kBfb7197bcca0b: Loading layer [==================================================>] 234.3MB/234.3MB0beddd8d6be2: Loading layer [==================================================>] 61.95kB/61.95kB8b559dcbd8b1: Loading layer [==================================================>] 2.048kB/2.048kBba2a62a232e7: Loading layer [==================================================>] 3.072kB/3.072kB0087bbc00356: Loading layer [==================================================>] 18.94kB/18.94kBbec2427aa484: Loading layer [==================================================>] 3.072kB/3.072kBLoaded image: avizdock/postgres:14ones-fm-db-dataones-fm-dataLoaded image: avizdock/docker:v3.0.0bf63823f8c99: Loading layer [==================================================>] 84.18MB/84.18MB162b992dedca: Loading layer [==================================================>] 3.395MB/3.395MB4aa7ea28d987: Loading layer [==================================================>] 43.34MB/43.34MBdc9851b6350b: Loading layer [==================================================>] 4.608kB/4.608kBb1b299295e53: Loading layer [==================================================>] 12.08MB/12.08MB739c25f0a755: Loading layer [==================================================>] 1.536kB/1.536kB51a99d985dad: Loading layer [==================================================>] 29.31MB/29.31MBe8605c9dadf3: Loading layer [==================================================>] 2.56kB/2.56kBe3c514881f8f: Loading layer [==================================================>] 34.07MB/34.07MBe437f061681a: Loading layer [==================================================>] 8.192kB/8.192kBLoaded image: avizdock/ones-db-backup:v3.0.0Loaded image: avizdock/zookeeper:v3.0.0Loaded image: avizdock/kafka:v3.0.0Loaded image: avizdock/schemaregistry:v3.0.0Loaded image: avizdock/kafka-connect:v3.0.0Loaded image: avizdock/ksqldb-server:v3.0.076367d75676f: Loading layer [==================================================>] 7.369MB/7.369MBa5406ed65f11: Loading layer [==================================================>] 282.7MB/282.7MB58f70dbfa845: Loading layer [==================================================>] 2.048kB/2.048kBf757d9533757: Loading layer [==================================================>] 100.4MB/100.4MB5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kBLoaded image: avizdock/ones-stream-processor:v3.0.05204d88907ef: Loading layer [==================================================>] 68.32MB/68.32MB920be4d9d898: Loading layer [==================================================>] 2.048kB/2.048kBff7ff3cef7fa: Loading layer [==================================================>] 108.9MB/108.9MB5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kBLoaded image: avizdock/apiserver:v3.0.0277a036e29bd: Loading layer [==================================================>] 76.38MB/76.38MB5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kBLoaded image: avizdock/ones-rule-service:v3.0.0ones-rule-db-data046c8b6d5bab6b2c21b5763abebdd37fe58fc215bcd1a961317d6be8d3b59e44Cleaning up existing containers..Bringing up ONES app containersBringing up ONES-collector-db container in no recreate mode and ONES-fm-db[+] Running 1/1 ⠿ Container ones-collector-db Started 4.5s[+] Running 2/2 ⠿ Container ones-rule-service-db Started 0.7s ⠿ Container ones-fm-db Started 0.7s[+] Running 1/1 ⠿ Container zookeeper Started 1.5sNAME COMMAND SERVICE STATUS PORTSones-collector-db "/docker-entrypoint.…" collector-db running 8008/tcp, 0.0.0.0:5432->5432/tcp, :::5432->5432/tcp, 8081/tcpones-fm-db "docker-entrypoint.s…" fm-db running 0.0.0.0:2345->5432/tcp, :::2345->5432/tcpones-rule-service-db "docker-entrypoint.s…" rule-service-db running 0.0.0.0:2456->5432/tcp, :::2456->5432/tcpzookeeper "/etc/confluent/dock…" zookeeper running 2888/tcp, 0.0.0.0:2181->2181/tcp, :::2181->2181/tcp, 3888/tcpplease wait for collector-db, rule-service-db and fm-db to initialize[+] Running 2/2......................................................................................................... ⠿ Container zookeeper Running 0.0s ⠿ Container broker Started 0.7sones-collector-db...........................................................................................................................................................................[+] Running 5/5...................................................... ⠿ Container zookeeper Running 0.0s ⠿ Container broker Running 0.0s ⠿ Container schema-registry Started 0.8s ⠿ Container ksqldb-server Started 0.8s ⠿ Container kafka-connect Started 1.3s............................................................[+] Running 4/4 ⠿ Container ones-gateway Started 1.9s ⠿ Container zookeeper Running 0.0s ⠿ Container broker Running 0.0s ⠿ Container ones-collector Started 2.5s[+] Running 17/17........................................... ⠿ Container ones-pty-server Started 2.0s ⠿ Container api-server Started 2.4s ⠿ Container ones-ui Started 2.2s ⠿ Container docker Started 2.4s ⠿ Container ones-rule-service Started 1.9s ⠿ Container ones-collector-db Running 0.0s ⠿ Container ones-rule-service-db Running 0.0s ⠿ Container ones-fm-db Running 0.0s ⠿ Container zookeeper Running 0.0s ⠿ Container ones-gateway Running 0.0s ⠿ Container ones-fm Started 2.3s ⠿ Container broker Running 0.0s ⠿ Container ksqldb-server Running 0.0s ⠿ Container schema-registry Running 0.0s ⠿ Container stream-processor Started 2.1s ⠿ Container ones-collector Running 0.0s ⠿ Container kafka-connect Running 0.0sNAME COMMAND SERVICE STATUS PORTSapi-server "java -jar /app/apis…" api-server running 0.0.0.0:8080->8080/tcp, :::8080->8080/tcpbroker "/etc/confluent/dock…" broker running 0.0.0.0:9092->9092/tcp, :::9092->9092/tcp, 0.0.0.0:9101->9101/tcp, :::9101->9101/tcp, 0.0.0.0:29092->29092/tcp, :::29092->29092/tcpdocker "python3 app.py" docker runningkafka-connect "/etc/confluent/dock…" kafka-connect running (healthy) 0.0.0.0:8083->8083/tcp, :::8083->8083/tcp, 9092/tcpksqldb-server "/etc/confluent/dock…" ksqldb-server running 0.0.0.0:8088->8088/tcp, :::8088->8088/tcpones-collector "java -jar -XX:MaxGC…" collector running 8093/tcp, 0.0.0.0:50053->50053/tcp, :::50053->50053/tcpones-collector-db "/docker-entrypoint.…" collector-db running 8008/tcp, 0.0.0.0:5432->5432/tcp, :::5432->5432/tcp, 8081/tcpones-fm "/bin/sh -c '{ gunic…" fm running 0.0.0.0:8787->8080/tcp, :::8787->8080/tcpones-fm-db "docker-entrypoint.s…" fm-db running 0.0.0.0:2345->5432/tcp, :::2345->5432/tcpones-gateway "./gnmi-gateway -Tar…" gateway running 0.0.0.0:9339->9339/tcp, :::9339->9339/tcpones-pty-server "docker-entrypoint.s…" pty-server running 0.0.0.0:8885->8885/tcp, :::8885->8885/tcpones-rule-service "java -jar /app/rule…" rule-service running 8080/tcpones-rule-service-db "docker-entrypoint.s…" rule-service-db running 0.0.0.0:2456->5432/tcp, :::2456->5432/tcpones-ui "docker-entrypoint.s…" ui running 0.0.0.0:443->443/tcp, :::443->443/tcp, 3002/tcpschema-registry "/etc/confluent/dock…" schema-registry running 0.0.0.0:8081->8081/tcp, :::8081->8081/tcpstream-processor "java -jar /app/stre…" stream-processor running 8080/tcpzookeeper "/etc/confluent/dock…" zookeeper running 2888/tcp, 0.0.0.0:2181->2181/tcp, :::2181->2181/tcp, 3888/tcpFinishing up ONES Installation...............................................................Installed ONES application successfully.......................Open the ONES application at https://10.20.0.80
Access ONES Application Web GUI from a supported browser using https://<host-ip/FQDN>
Activation:
For a Trail license, the user needs to reach out to AVIZ Support
For Activation, the user can choose Activate License if the user has an activation key of any subscription
Users can activate the ONES Application first time just after installation(first-time ONES application shows the page to activate the license
After evaluating ONES application, the user will have the option to activate the license anytime from the License Page
1. Activate License
2. Activate Key
Use Default credentials as below;
Username: superadmin
Password : Admin@123
Update/Change your password on the first login
Password should contain:-
Minimum Password Length - 8 characters
Maximum Password Length - 24 characters
Character Support - Alpha Numeric
Special Characters - (# @ $ ! & % only)
Character Rule - At least one Upper Case and one special character
Login To ONES
After Resetting the password use new credentials to login
You will see the default Monitor Page with a Topology view
1. Upgrade License
After Trail use, if the user wishes to upgrade new Subscription-based license, so user can navigate to the below page.
Account >> License >> Upgrade License
Click Upgrade License & Enter the subscription-based key
If Switches Deployment is large so user needs to enable the large config inside Database Config File
Copy the postgresql.config file outside to do changes
edit the file and uncomment few lines to activate Large config and save the changes
vi dbconfig.conf
Uncomment the below lines in the above file is the change
#------------------------------------------------------------------------------
# LARGE CONFIGURATION - START
#------------------------------------------------------------------------------
timescaledb.max_background_workers = 16 # Increased for more concurrent background processes
# MEMORY SETTINGS (LARGE)
shared_buffers = 8GB # Adjust based on your available system memory
work_mem = 16MB # Set based on your workload; adjust as needed
maintenance_work_mem = 1GB # Important for bulk operations and autovacuum
effective_cache_size = 16GB # Estimate the cache available for PostgreSQL (usually 50-75% of system memory)
# WAL SETTINGS (LARGE)
wal_level = logical # Recommended for logical replication and high-volume streaming
max_wal_size = 8GB # Increase to accommodate more WAL data during peak operations
checkpoint_timeout = 15min # Spread checkpoint operations for better performance
checkpoint_completion_target = 0.9 # Further spreads the checkpoint process
wal_compression = on # Reduces WAL size, useful in high-traffic scenarios
# CONNECTION AND PROCESS SETTINGS (LARGE)
max_worker_processes = 16 # Increased to allow more background workers
max_parallel_workers = 16 # More parallel workers for better throughput
max_parallel_workers_per_gather = 4 # Adjust based on the complexity of your queries
# AUTOVACUUM SETTINGS (LARGE)
autovacuum_max_workers = 10 # Handle larger tables or high data churn more effectively
autovacuum_naptime = 10s # Increase the frequency of autovacuuming
autovacuum_vacuum_cost_limit = 5000 # Handle vacuum operations more aggressively
autovacuum_vacuum_scale_factor = 0.01 # Trigger autovacuum sooner on large tables
# PERFORMANCE SETTINGS (LARGE)
effective_io_concurrency = 500 # For SSDs, this can be set high to optimize I/O
synchronous_commit = off # Improves throughput at the cost of potential data loss in a crash
random_page_cost = 1.1 # Optimized for SSDs
seq_page_cost = 1.0 # Optimized for SSDs
jit = on # Enable JIT compilation for performance boosts in complex queries
#------------------------------------------------------------------------------
# LARGE CONFIGURATION - END
#------------------------------------------------------------------------------
