> Essential > Storage > HyperScale X > Appliance > Additional Configurations

Enabling Firewall on HyperScale X Appliance

Firewall can be enabled and the required ports automatically opened on the HyperScale nodes.

Before You Begin

The following minimum version is required for this feature in the CommServe server and the HyperScale MediaAgent:

  • Commvault V11 with Feature Release 24 (11.24.64 or later)

Procedure

  1. Set the MediaAgents associated with the cluster on Maintenance mode.

    For more information, see Setting the MediaAgent on Maintenance Mode.

  2. Login to the first node in the cluster and perform the following steps:

    1. Navigate the following folder:

      # cd /opt/commvault/MediaAgent/task_manager

    2. Run the following script to stop the cluster:

      Note

      It is mandatory to stop the cluster before enabling the firewall. (Executing the commands without stopping the cluster in the beginning may lead to unpredictable results.)

      # ./cvmanager.py -t Configure_Firewall stop_cluster=True

      This will stop all the nodes in the cluster and enable the necessary ports needed for the cluster, depending on your environment. For more information on the required ports, see Firewall Port Requirements forHyperScale X Appliance.

    3. Verify that the firewall is enabled using the following command:

      # firewall-cmd --state

      This should display the state as running.

    4. Verify that the MediaAgent services are running using the following command:

      # commvault list

      For more information on managing the MediaAgent services, see Commands to Control Services on UNIX Clients.

  3. Login to the next node and perform the following steps:

    1. Navigate the following folder:

      # cd /opt/commvault/MediaAgent/task_manager

    2. Run the following script:

      # ./cvmanager.py -t Configure_Firewall

      This will enable the necessary ports needed for the cluster, depending on your environment. For more information on the required ports, see Firewall Port Requirements forHyperScale X Appliance.

    3. Verify that the firewall is enabled using the following command:

      # firewall-cmd --state

      This should display the state as running.

    4. Verify that the MediaAgent services are running using the following command:

      # commvault list

      For more information on managing the MediaAgent services, see Commands to Control Services on UNIX Clients.

  4. Login to the last node in the cluster and perform the following steps:

    1. Navigate the following folder:

      # cd /opt/commvault/MediaAgent/task_manager

    2. Run the following script:

      # ./cvmanager.py -t Configure_Firewall start_cluster=True

      This will start all the nodes in the cluster and enable the necessary ports needed for the cluster, depending on your environment. For more information on the required ports, see Firewall Port Requirements forHyperScale X Appliance.

    3. Verify that the firewall is enabled using the following command:

      # firewall-cmd --state

      This should display the state as running.

    4. Verify that the MediaAgent services are running using the following command:

      # commvault list

      For more information on managing the MediaAgent services, see Commands to Control Services on UNIX Clients.

  5. Check readiness of the MediaAgents in the HyperScale nodes to make sure that it is ready.

    For more information, see Checking Readiness.

  6. Turn off the maintenance mode on MediaAgents associated with the cluster.

    For more information, see Setting the MediaAgent on Maintenance Mode.

Result

Firewall will be enabled in all the nodes in the storage pool.

Loading...