The installer file automatically detects & processes fresh installation or upgrade to the new version
While upgrading there is no dependency of prevision version files,
Once the upgrade process is completed, user manually have to delete the previous version files/Packages from the device, Script do not touch old version files
By default, the installer does not provide any license, user needs to contact AVIZ support Team.
ONESv3.0 support SSL certificate integration
User can choose YES if the User wants to integrate their own SSL certificate
Installing Open Networking Enterprise Suite (ONES)
..................................................
Installing prerequisites for ONES application
....................
....................
....................
....................
Installing sshpass...
dpkg: warning: downgrading sshpass from 1.09-1 to 1.06-1
(Reading database ... 116659 files and directories currently installed.)
Preparing to unpack .../sshpass_1.06-1_amd64.deb ...
Unpacking sshpass (1.06-1) over (1.09-1) ...
Setting up sshpass (1.06-1) ...
Processing triggers for man-db (2.10.2-1) ...
ONES is getting installed for the first time, choose appropriate options when prompted...
....................
Installing ONES application...
Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: y
Enter the path to the private key file: /home/aviz/server.pem
Enter the path to the certificate file: /home/aviz/server.crt.pem
Note* Replace the Private key & certificate path to correct location
Choose No, if the user wants to use a self-signed certificate that is integrated into ONES package
Installing Open Networking Enterprise Suite (ONES)
..................................................
Installing prerequisites for ONES application
....................
....................
....................
....................
Installing sshpass...
dpkg: warning: downgrading sshpass from 1.09-1 to 1.06-1
(Reading database ... 116659 files and directories currently installed.)
Preparing to unpack .../sshpass_1.06-1_amd64.deb ...
Unpacking sshpass (1.06-1) over (1.09-1) ...
Setting up sshpass (1.06-1) ...
Processing triggers for man-db (2.10.2-1) ...
ONES is getting installed for the first time, choose appropriate options when prompted...
....................
Installing ONES application...
Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: n
Using self signed certificates...
Enable or disable the ONE DL feature
User can choose YES if the User wants to enable ONES DataLake feature.
Do you want to enable ONE-DL feature? [y/n]: y
Since ONE-DL configuration has been chosen, please provide the information below...
Enter EC2 ONE-DL Backend Public DNS Endpoint: <Path>
User can choose No if need not to enable ONES DataLake feature
Do you want to enable ONE-DL feature? [y/n]: n
The installation allows a user to enable DB backup
Users can choose the local or remote location to backup the database
By default, the application creates a database backup every 86400 seconds(1 day), but the user can modify it as per the requirement
Local and Remote Backup
By-default application creates 1 backup for local and for remote,
It has a range of 1 to 3 and once it will add one more it will remove the first copy of the database,
User can modify the number of backup files at the time of installation
By-default ONES create ./backup directory to maintain local database
Local backup:
Do you want to enable DB backups? [y/n]y
Where do you want to store the backups? [local/remote]: local #local keyword trigger local database on server
Enter the backup directory: ./backups #Enter the server directory in which user wants to take backup
Enter the number of backups (between 1 and 3) to retain (Older backups will be deleted): 1 #Enter the number of backup user wants to create
Enter the backup interval in seconds (3600 seconds or higher): 86400 #Enter the value in seconds to take a backup
Remote backup:
Do you want to enable DB backup feature? [y/n]: y
Where do you want to store the backups? [local/remote]: remote #remote keyword trigger remote database on server
Please make sure the remote server is reachable via SSH
Enter the remote machine IP: 10.0.0.1
Enter the remote machine username: admin
Enter the remote machine password:
Enter the backup directory: ~/backups #Enter the remote server directory in which user wants to take backup
Backup is being done in 10.0.0.1 at ~/backups
Enter the number of backups (between 1 and 100) to retain (Older backups will be deleted): 5 #Enter the number of backup user wants to create
Enter the backup interval in seconds (3600 seconds or higher): 86400 #Enter the value in seconds to take a backup
ONESv3.0 support certificate-based authentication between ONES App and devices for GNMI and Auto-discovery
For agent auto-discovery agent will act as a client and the collector as a server.
For normal gnmi communication, the agent will act as a server and the collector as a client. Need certificates based on this.
No:
Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: n
Yes:
Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: y
Enter the path to the ca-cert.pem file: ca-cert.pem
Enter the path to the server-cert.pem file: server-cert.pem
Enter the path to the server-key.pem file: server-key.pem
Enter the path to the client-cert.pem file: client-cert.pem
Enter the path to the client-key.pem file: client-key.pem
Proceeding with certificates for Agent Auto Registration
Enter the path to the ca-cert-reg.pem file: ca-cert-reg.pem
Enter the path to the server-cert.pem file: server-cert.pem
Enter the path to the server-key.pem file: server-key.pem
Enter the path to the client-cert.pem file: client-cert.pem
Enter the path to the client-key.pem file: client-key.pem
The user needs to provide the certificate path and replace the key name with the path of the certificate to be used here
ONES Application support IP-based Access & FQDN Access
Enter the ONES App URL: https:// #Replace the input with IP or FQDN
IP based
Enter the ONES App URL: https://192.168.1.1
FQDN based
Enter the ONES App URL: https://ones.aviznetworks.com
ONESv3.0 support password-based(MD5) authentication between ONES App and devices for GNMI and Auto-discovery
User can choose yes if need password based authentication
Do you want to enable agent authentication ? [y/n]: y
Enter the ones-agent username: admin
Enter the ones-agent password: YourPaSsWoRd
User can choose no if there no requirement of authentication
Do you want to enable agent authentication ? [y/n]: n
Users cannot simultaneously select both certificate-based authentication and password-based authentication between the agent and the ONES application. They must choose one authentication method at a time for securing communication between the agent and the ONES app if required.
Installation begins
root@aviz:/home/aviz/GA_3.0/ones-1725445069-onprem# ./ones-installer.sh
Installing Open Networking Enterprise Suite (ONES)
..................................................
Installing prerequisites for ONES application
....................
....................
....................
....................
Installing sshpass...
dpkg: warning: downgrading sshpass from 1.09-1 to 1.06-1
(Reading database ... 116659 files and directories currently installed.)
Preparing to unpack .../sshpass_1.06-1_amd64.deb ...
Unpacking sshpass (1.06-1) over (1.09-1) ...
Setting up sshpass (1.06-1) ...
Processing triggers for man-db (2.10.2-1) ...
ONES is getting installed for the first time, choose appropriate options when prompted...
....................
Installing ONES application...
Do you want to install domain SSL certificate(if not, installation will proceed with a self signed certificate)? [y/n]: y
Enter the path to the private key file: /home/aviz/server.pem
Enter the path to the certificate file: /home/aviz/server.crt.pem
Do you want to enable ONE-DL feature? [y/n]: n
Do you want to enable DB backup feature? [y/n]: y
Where do you want to store the backups? [local/remote]: remote
Please make sure the remote server is reachable via SSH
Enter the remote machine IP: 10.0.0.1
Enter the remote machine username: admin
Enter the remote machine password:
Enter the backup directory: ~/backups
Backup is being done in 10.0.0.1 at ~/backups
Enter the number of backups (between 1 and 100) to retain (Older backups will be deleted): 5
Enter the backup interval in seconds (3600 seconds or higher): 86400
Do you want to enable certificate based authentication between ONES controller and devices? [y/n]: n
Enter the ONES App URL for Rule-Engine Alert [https://<host-ip or domain>]: https://10.20.0.80
Do you want to enable agent authentication ? [y/n]: y
Enter the ones-agent username: admin
Enter the ones-agent password: YourPaSsWoRd
Setting up the environment and loading essential dockers...
2bb80ba200dd: Loading layer [==================================================>] 68.32MB/68.32MB
2a9822159dc0: Loading layer [==================================================>] 2.048kB/2.048kB
2db080db4c83: Loading layer [==================================================>] 143.2MB/143.2MB
5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kB
Loaded image: avizdock/ones-collector:v3.0.0
f99617b4857d: Loading layer [==================================================>] 2.081GB/2.081GB
598cad3fc7f2: Loading layer [==================================================>] 4.096kB/4.096kB
a2cac5263de0: Loading layer [==================================================>] 1.536kB/1.536kB
4d9c9e7cdef2: Loading layer [==================================================>] 3.584kB/3.584kB
a76669129b6a: Loading layer [==================================================>] 98.3kB/98.3kB
5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kB
85f57de39b33: Loading layer [==================================================>] 7.68kB/7.68kB
21cdd2e0b4ef: Loading layer [==================================================>] 2.048kB/2.048kB
12f4e967e13f: Loading layer [==================================================>] 10.75kB/10.75kB
5e93cea4ec38: Loading layer [==================================================>] 11.26kB/11.26kB
ce0cf0b53390: Loading layer [==================================================>] 77.59MB/77.59MB
0344a1894c78: Loading layer [==================================================>] 161.2MB/161.2MB
Loaded image: avizdock/timescaledb:latest
ones-collector-db-data
0280eb3c2596: Loading layer [==================================================>] 1.536kB/1.536kB
6dde90cacd10: Loading layer [==================================================>] 86.02kB/86.02kB
2aa52ba420da: Loading layer [==================================================>] 296.4MB/296.4MB
be57349b17a3: Loading layer [==================================================>] 6.353MB/6.353MB
0ec41b6d891c: Loading layer [==================================================>] 2.349MB/2.349MB
d5f95e6a3021: Loading layer [==================================================>] 115.2MB/115.2MB
05f76cb3b696: Loading layer [==================================================>] 6.619MB/6.619MB
2511c56b8490: Loading layer [==================================================>] 5.766MB/5.766MB
Loaded image: avizdock/ones-ui:v3.0.0
ones-ui-data
952d1ba246e9: Loading layer [==================================================>] 1.536kB/1.536kB
aa5bb983ae7a: Loading layer [==================================================>] 3.072kB/3.072kB
29500ccb4fdd: Loading layer [==================================================>] 243MB/243MB
0d1d24f6d697: Loading layer [==================================================>] 223.8MB/223.8MB
370ce41daeb2: Loading layer [==================================================>] 6.291MB/6.291MB
53f7f3605d6c: Loading layer [==================================================>] 2.992MB/2.992MB
05dc8de6e8f6: Loading layer [==================================================>] 158.2kB/158.2kB
Loaded image: avizdock/pty-server:v3.0.0
64a5ccd06307: Loading layer [==================================================>] 2.048kB/2.048kB
ca4c2e6e9d9e: Loading layer [==================================================>] 1.203MB/1.203MB
5296c36b9ebf: Loading layer [==================================================>] 862.7MB/862.7MB
5943159c673a: Loading layer [==================================================>] 41.97MB/41.97MB
Loaded image: avizdock/ones-gateway:v3.0.0
4f28916f37e9: Loading layer [==================================================>] 129.5MB/129.5MB
2a5df58ba97f: Loading layer [==================================================>] 29.52MB/29.52MB
c7fd29476165: Loading layer [==================================================>] 156.6MB/156.6MB
c7e74d262dff: Loading layer [==================================================>] 38.24MB/38.24MB
e851c0af7c3d: Loading layer [==================================================>] 359.7MB/359.7MB
2ef53f757b83: Loading layer [==================================================>] 40.77MB/40.77MB
bc8e8be8d143: Loading layer [==================================================>] 2.048kB/2.048kB
83fa77e03e24: Loading layer [==================================================>] 59.91MB/59.91MB
5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kB
d0feb9122054: Loading layer [==================================================>] 2.56kB/2.56kB
7219b0fcbd58: Loading layer [==================================================>] 2.56kB/2.56kB
c529643b8d45: Loading layer [==================================================>] 527.4MB/527.4MB
d69f335ef8e6: Loading layer [==================================================>] 44.73MB/44.73MB
1644861feacd: Loading layer [==================================================>] 145.9kB/145.9kB
Loaded image: avizdock/ones-fm:v3.0.0
d4fc045c9e3a: Loading layer [==================================================>] 7.667MB/7.667MB
b150abefba25: Loading layer [==================================================>] 12.29kB/12.29kB
93cb05de897b: Loading layer [==================================================>] 1.536kB/1.536kB
fb7197bcca0b: Loading layer [==================================================>] 234.3MB/234.3MB
0beddd8d6be2: Loading layer [==================================================>] 61.95kB/61.95kB
8b559dcbd8b1: Loading layer [==================================================>] 2.048kB/2.048kB
ba2a62a232e7: Loading layer [==================================================>] 3.072kB/3.072kB
0087bbc00356: Loading layer [==================================================>] 18.94kB/18.94kB
bec2427aa484: Loading layer [==================================================>] 3.072kB/3.072kB
Loaded image: avizdock/postgres:14
ones-fm-db-data
ones-fm-data
Loaded image: avizdock/docker:v3.0.0
bf63823f8c99: Loading layer [==================================================>] 84.18MB/84.18MB
162b992dedca: Loading layer [==================================================>] 3.395MB/3.395MB
4aa7ea28d987: Loading layer [==================================================>] 43.34MB/43.34MB
dc9851b6350b: Loading layer [==================================================>] 4.608kB/4.608kB
b1b299295e53: Loading layer [==================================================>] 12.08MB/12.08MB
739c25f0a755: Loading layer [==================================================>] 1.536kB/1.536kB
51a99d985dad: Loading layer [==================================================>] 29.31MB/29.31MB
e8605c9dadf3: Loading layer [==================================================>] 2.56kB/2.56kB
e3c514881f8f: Loading layer [==================================================>] 34.07MB/34.07MB
e437f061681a: Loading layer [==================================================>] 8.192kB/8.192kB
Loaded image: avizdock/ones-db-backup:v3.0.0
Loaded image: avizdock/zookeeper:v3.0.0
Loaded image: avizdock/kafka:v3.0.0
Loaded image: avizdock/schemaregistry:v3.0.0
Loaded image: avizdock/kafka-connect:v3.0.0
Loaded image: avizdock/ksqldb-server:v3.0.0
76367d75676f: Loading layer [==================================================>] 7.369MB/7.369MB
a5406ed65f11: Loading layer [==================================================>] 282.7MB/282.7MB
58f70dbfa845: Loading layer [==================================================>] 2.048kB/2.048kB
f757d9533757: Loading layer [==================================================>] 100.4MB/100.4MB
5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kB
Loaded image: avizdock/ones-stream-processor:v3.0.0
5204d88907ef: Loading layer [==================================================>] 68.32MB/68.32MB
920be4d9d898: Loading layer [==================================================>] 2.048kB/2.048kB
ff7ff3cef7fa: Loading layer [==================================================>] 108.9MB/108.9MB
5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kB
Loaded image: avizdock/apiserver:v3.0.0
277a036e29bd: Loading layer [==================================================>] 76.38MB/76.38MB
5f70bf18a086: Loading layer [==================================================>] 1.024kB/1.024kB
Loaded image: avizdock/ones-rule-service:v3.0.0
ones-rule-db-data
046c8b6d5bab6b2c21b5763abebdd37fe58fc215bcd1a961317d6be8d3b59e44
Cleaning up existing containers..
Bringing up ONES app containers
Bringing up ONES-collector-db container in no recreate mode and ONES-fm-db
[+] Running 1/1
⠿ Container ones-collector-db Started 4.5s
[+] Running 2/2
⠿ Container ones-rule-service-db Started 0.7s
⠿ Container ones-fm-db Started 0.7s
[+] Running 1/1
⠿ Container zookeeper Started 1.5s
NAME COMMAND SERVICE STATUS PORTS
ones-collector-db "/docker-entrypoint.…" collector-db running 8008/tcp, 0.0.0.0:5432->5432/tcp, :::5432->5432/tcp, 8081/tcp
ones-fm-db "docker-entrypoint.s…" fm-db running 0.0.0.0:2345->5432/tcp, :::2345->5432/tcp
ones-rule-service-db "docker-entrypoint.s…" rule-service-db running 0.0.0.0:2456->5432/tcp, :::2456->5432/tcp
zookeeper "/etc/confluent/dock…" zookeeper running 2888/tcp, 0.0.0.0:2181->2181/tcp, :::2181->2181/tcp, 3888/tcp
please wait for collector-db, rule-service-db and fm-db to initialize
[+] Running 2/2.........................................................................................................
⠿ Container zookeeper Running 0.0s
⠿ Container broker Started 0.7s
ones-collector-db
...........................................................................................................................................................................[+] Running 5/5......................................................
⠿ Container zookeeper Running 0.0s
⠿ Container broker Running 0.0s
⠿ Container schema-registry Started 0.8s
⠿ Container ksqldb-server Started 0.8s
⠿ Container kafka-connect Started 1.3s
............................................................
[+] Running 4/4
⠿ Container ones-gateway Started 1.9s
⠿ Container zookeeper Running 0.0s
⠿ Container broker Running 0.0s
⠿ Container ones-collector Started 2.5s
[+] Running 17/17...........................................
⠿ Container ones-pty-server Started 2.0s
⠿ Container api-server Started 2.4s
⠿ Container ones-ui Started 2.2s
⠿ Container docker Started 2.4s
⠿ Container ones-rule-service Started 1.9s
⠿ Container ones-collector-db Running 0.0s
⠿ Container ones-rule-service-db Running 0.0s
⠿ Container ones-fm-db Running 0.0s
⠿ Container zookeeper Running 0.0s
⠿ Container ones-gateway Running 0.0s
⠿ Container ones-fm Started 2.3s
⠿ Container broker Running 0.0s
⠿ Container ksqldb-server Running 0.0s
⠿ Container schema-registry Running 0.0s
⠿ Container stream-processor Started 2.1s
⠿ Container ones-collector Running 0.0s
⠿ Container kafka-connect Running 0.0s
NAME COMMAND SERVICE STATUS PORTS
api-server "java -jar /app/apis…" api-server running 0.0.0.0:8080->8080/tcp, :::8080->8080/tcp
broker "/etc/confluent/dock…" broker running 0.0.0.0:9092->9092/tcp, :::9092->9092/tcp, 0.0.0.0:9101->9101/tcp, :::9101->9101/tcp, 0.0.0.0:29092->29092/tcp, :::29092->29092/tcp
docker "python3 app.py" docker running
kafka-connect "/etc/confluent/dock…" kafka-connect running (healthy) 0.0.0.0:8083->8083/tcp, :::8083->8083/tcp, 9092/tcp
ksqldb-server "/etc/confluent/dock…" ksqldb-server running 0.0.0.0:8088->8088/tcp, :::8088->8088/tcp
ones-collector "java -jar -XX:MaxGC…" collector running 8093/tcp, 0.0.0.0:50053->50053/tcp, :::50053->50053/tcp
ones-collector-db "/docker-entrypoint.…" collector-db running 8008/tcp, 0.0.0.0:5432->5432/tcp, :::5432->5432/tcp, 8081/tcp
ones-fm "/bin/sh -c '{ gunic…" fm running 0.0.0.0:8787->8080/tcp, :::8787->8080/tcp
ones-fm-db "docker-entrypoint.s…" fm-db running 0.0.0.0:2345->5432/tcp, :::2345->5432/tcp
ones-gateway "./gnmi-gateway -Tar…" gateway running 0.0.0.0:9339->9339/tcp, :::9339->9339/tcp
ones-pty-server "docker-entrypoint.s…" pty-server running 0.0.0.0:8885->8885/tcp, :::8885->8885/tcp
ones-rule-service "java -jar /app/rule…" rule-service running 8080/tcp
ones-rule-service-db "docker-entrypoint.s…" rule-service-db running 0.0.0.0:2456->5432/tcp, :::2456->5432/tcp
ones-ui "docker-entrypoint.s…" ui running 0.0.0.0:443->443/tcp, :::443->443/tcp, 3002/tcp
schema-registry "/etc/confluent/dock…" schema-registry running 0.0.0.0:8081->8081/tcp, :::8081->8081/tcp
stream-processor "java -jar /app/stre…" stream-processor running 8080/tcp
zookeeper "/etc/confluent/dock…" zookeeper running 2888/tcp, 0.0.0.0:2181->2181/tcp, :::2181->2181/tcp, 3888/tcp
Finishing up ONES Installation...
............................................................Installed ONES application successfully...
....................
Open the ONES application at https://10.20.0.80
Access ONES Application Web GUI from a supported browser using https://<host-ip/FQDN>
Activation:
For a Trail license, the user needs to reach out to AVIZ Support
For Activation, the user can choose Activate License if the user has an activation key of any subscription
Users can activate the ONES Application first time just after installation(first-time ONES application shows the page to activate the license
After evaluating ONES application, the user will have the option to activate the license anytime from the License Page
1. Activate License
2. Activate Key
Use Default credentials as below;
Username: superadmin
Password : Admin@123
Update/Change your password on the first login
Password should contain:-
Minimum Password Length - 8 characters
Maximum Password Length - 24 characters
Character Support - Alpha Numeric
Special Characters - (# @ $ ! & % only)
Character Rule - At least one Upper Case and one special character
Login To ONES
After Resetting the password use new credentials to login
You will see the default Monitor Page with a Topology view
1. Upgrade License
After Trail use, if the user wishes to upgrade new Subscription-based license, so user can navigate to the below page.
Account >> License >> Upgrade License
Click Upgrade License & Enter the subscription-based key
If Switches Deployment is large so user needs to enable the large config inside Database Config File
Copy the postgresql.config file outside to do changes
edit the file and uncomment few lines to activate Large config and save the changes
vi dbconfig.conf
Uncomment the below lines in the above file is the change
#------------------------------------------------------------------------------
# LARGE CONFIGURATION - START
#------------------------------------------------------------------------------
timescaledb.max_background_workers = 16 # Increased for more concurrent background processes
# MEMORY SETTINGS (LARGE)
shared_buffers = 8GB # Adjust based on your available system memory
work_mem = 16MB # Set based on your workload; adjust as needed
maintenance_work_mem = 1GB # Important for bulk operations and autovacuum
effective_cache_size = 16GB # Estimate the cache available for PostgreSQL (usually 50-75% of system memory)
# WAL SETTINGS (LARGE)
wal_level = logical # Recommended for logical replication and high-volume streaming
max_wal_size = 8GB # Increase to accommodate more WAL data during peak operations
checkpoint_timeout = 15min # Spread checkpoint operations for better performance
checkpoint_completion_target = 0.9 # Further spreads the checkpoint process
wal_compression = on # Reduces WAL size, useful in high-traffic scenarios
# CONNECTION AND PROCESS SETTINGS (LARGE)
max_worker_processes = 16 # Increased to allow more background workers
max_parallel_workers = 16 # More parallel workers for better throughput
max_parallel_workers_per_gather = 4 # Adjust based on the complexity of your queries
# AUTOVACUUM SETTINGS (LARGE)
autovacuum_max_workers = 10 # Handle larger tables or high data churn more effectively
autovacuum_naptime = 10s # Increase the frequency of autovacuuming
autovacuum_vacuum_cost_limit = 5000 # Handle vacuum operations more aggressively
autovacuum_vacuum_scale_factor = 0.01 # Trigger autovacuum sooner on large tables
# PERFORMANCE SETTINGS (LARGE)
effective_io_concurrency = 500 # For SSDs, this can be set high to optimize I/O
synchronous_commit = off # Improves throughput at the cost of potential data loss in a crash
random_page_cost = 1.1 # Optimized for SSDs
seq_page_cost = 1.0 # Optimized for SSDs
jit = on # Enable JIT compilation for performance boosts in complex queries
#------------------------------------------------------------------------------
# LARGE CONFIGURATION - END
#------------------------------------------------------------------------------
