Showing posts with label Vmware. Show all posts
Showing posts with label Vmware. Show all posts

Monday, March 10, 2014

My Cisco IOU Racks - from flyxj IOUv3

My Cisco IOU Racks:
- from flyxj

Vmware configuration:



I have modified Interface IP to match my local configuration:
Root password is flyxj.cn
Change IOUv3 interface ip command:
[email protected]:~/LAB# ifconfig eth0 192.168.80.160




This is topology looks like. Totally there are six routers and four switches. Good enough to finish most routing / switching lab.

Enabled R1 and R2. Now it shows green in the topology.

[email protected]:~/LAB# ifconfig
eth0      Link encap:Ethernet  HWaddr 00:0c:29:df:93:07
          inet addr:192.168.80.159  Bcast:192.168.80.255  Mask:255.255.255.0
          inet6 addr: fe80::20c:29ff:fedf:9307/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:52 errors:0 dropped:0 overruns:0 frame:0
          TX packets:13 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:5397 (5.2 KiB)  TX bytes:908 (908.0 B)
          Interrupt:19 Base address:0x2000

eth1      Link encap:Ethernet  HWaddr 00:0c:29:df:93:11
          inet addr:10.10.10.160  Bcast:10.10.10.255  Mask:255.255.255.0
          inet6 addr: fe80::20c:29ff:fedf:9311/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:141 errors:0 dropped:0 overruns:0 frame:0
          TX packets:95 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:13924 (13.5 KiB)  TX bytes:12882 (12.5 KiB)
          Interrupt:16 Base address:0x2080

eth2      Link encap:Ethernet  HWaddr 00:0c:29:df:93:1b
          inet addr:192.168.20.160  Bcast:192.168.20.255  Mask:255.255.255.0
          inet6 addr: fe80::20c:29ff:fedf:931b/64 Scope:Link
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:44 errors:0 dropped:0 overruns:0 frame:0
          TX packets:6 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:4843 (4.7 KiB)  TX bytes:468 (468.0 B)
          Interrupt:17 Base address:0x2400

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          inet6 addr: ::1/128 Scope:Host
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:16 errors:0 dropped:0 overruns:0 frame:0
          TX packets:16 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:2014 (1.9 KiB)  TX bytes:2014 (1.9 KiB)


Using Telnet access 10 devices with port from 2001 to 2010. Also IOU3 itself support ssh access.

Enjoying.....

Thursday, March 14, 2013

How to upgrade Nexus 7K NX-OS Emulator Titanium VMware image to 6.1.1


1. Setup Network Environment for Upgrade

1.1 Configure Mgmt0 IP address under Management VRF


vrf context management
  ip route 0.0.0.0/0 10.94.30.1

interface mgmt0
  ip address 10.94.30.45/24

1.2 Setup FTP server on your vmware host which is using 10.94.30.50/24. 



1.3 Copy files using ftp.

N7K-2(config)# copy ftp://[email protected]/titanium-d1.6.1.1.gbin bootflash: vrf management 

Password: 
***** Transfer of file Completed Successfully *****    
N7K-2(config)# now saving to 
N7K-2(config)# copy ftp://[email protected]/titanium-d1-kickstart.6.1.1.gbin bootflash: vrf management 
Password: 
***** Transfer of file Completed Successfully *****    
Copy complete, now saving to disk (please wait)...
N7K-2(config)# dir bootflash:
      16384    Jan 06 19:54:26 2011  lost+found/
      23203    Mar 19 09:35:19 2013  mts.log
   28511744    Dec 22 21:21:57 2010  titanium-d1-kickstart.5.1.2.gbin
   27604992    Mar 19 11:53:16 2013  titanium-d1-kickstart.6.1.1.gbin
   60024194    Dec 22 21:22:00 2010  titanium-d1.5.1.2.gbin
   63184888    Mar 19 11:52:22 2013  titanium-d1.6.1.1.gbin
       4096    Jan 06 19:55:10 2011  vdc_2/
       4096    Jan 06 19:55:10 2011  vdc_3/
       4096    Jan 06 19:55:10 2011  vdc_4/
        784    Mar 19 09:35:46 2013  vlan.dat

Usage for bootflash://sup-local
  294207488 bytes used
 1300668416 bytes free
 1594875904 bytes total
N7K-2(config)# 


2. Boot with new binaries


N7K-2(config)# boot kickstart bootflash:/titanium-d1-kickstart.6.1.1.gbin
Note: system and kickstart bootvars are pointing to incompatible images
N7K-2(config)# boot system bootflash:/titanium-d1.6.1.1.gbin
N7K-2(config)# copy run start
[########################################] 100%
Copy complete, now saving to disk (please wait)...
N7K-2(config)# 

3. Booting screen


N7K-2(config)# reload
This command will reboot the system. (y/n)?  [n] y
2013 Mar 19 12:04:36 N7K-2 %$ VDC-1 %$ %PLATFORM-2-PFM_SYSTEM_RESET: Manual system restart from Command Line Interface
SysRq : Resetting

Auto booting bootflash:/titanium-d1-kickstart.6.1.1.gbin bootflash:/titanium-d1
.6.1.1.gbin...
Booting kickstart image: bootflash:/titanium-d1-kickstart.6.1.1.gbin....
...............................................................................
.....Image verification OK

INIT: version 2.86 booting
SCSI disk detected.
Enter system maintenance mode? (y/n) [n]: 
Checking all filesystems....r.r done.
Trying to mount cdrom...
hostname: invalid option -- '-'
Try `hostname --help' for more information.
Renaming eth interfaces
  renaming interfaces: eth0 to eth7
Loading system software
Uncompressing system image: bootflash:/titanium-d1.6.1.1.gbin Tue Mar 19 12:05:11 EST 2013
blogger: nothing to do.

..done Tue Mar 19 12:05:14 EST 2013
Load plugins that defined in image conf: /isan/plugin_img/img.conf
Loading plugin 0: core_plugin...
num srgs 1
0: swid-core-titanium, swid-core-titanium
num srgs 1
0: swid-sup1e-ks, swid-sup1e-ks
INIT: Entering runlevel: 3
Mounting other filesystems:  [  OK  ]
Starting NFS statd: [  OK  ]


2013 Mar 19 12:05:53 N7K-2 %$ VDC-1 %$ %COPP-2-COPP_NO_POLICY: Control-plane is unprotected.
2013 Mar 19 12:05:54 N7K-2 %$ VDC-1 %$ %MODULE-2-MOD_UNKNOWN: Module type [0] in slot 1 is not supported

2013 Mar 19 12:05:55 N7K-2 %$ VDC-1 %$ %VDC_MGR-2-VDC_ONLINE: vdc 1 has come online 

.
*****************
 Username: admin
 Password: cisco
*****************
.N7K-2 login: 2013 Mar 19 12:05:56 N7K-2 %$ VDC-1 %$ %PLATFORM-2-CHASSIS_CLKMODOK: Chassis clock module A ok
2013 Mar 19 12:05:56 N7K-2 %$ VDC-1 %$ %PLATFORM-2-CHASSIS_CLKSRC: Current chassis clock source is clock-A


*****************
 Username: admin
 Password: cisco
*****************
N7K-2 login: admin
Password: 
Last login: Tue Mar 19 12:06:04 on ttyS0
Cisco NX-OS Software
Copyright (c) 2002-2012, Cisco Systems, Inc. All rights reserved.
NX-OS/Titanium software ("NX-OS/Titanium Software") and related
documentation, files or other reference materials ("Documentation")
are the proprietary property and confidential information of Cisco
Systems, Inc. ("Cisco") and are protected, without limitation,
pursuant to United States and International copyright and trademark
laws in the applicable jurisdiction which provide civil and criminal
penalties for copying or distribution without Cisco's authorization.
The use of NX-OS/Titanium Software and Documentation is strictly
limited to Cisco's internal use.

Any use or disclosure, in whole or in part, of the NX-OS/Titanium
Software or Documentation to any third party for any purposes is
expressly prohibited except as otherwise authorized by Cisco in writing.
The copyrights to certain works contained herein are owned by other
third parties and are used and distributed under license. Some parts
of this software may be covered under the GNU Public License or the
GNU Lesser General Public License. A copy of each such license is
available at
http://www.gnu.org/licenses/gpl.html and
http://www.gnu.org/licenses/lgpl.html
N7K-2# sh ver
Cisco Nexus Operating System (NX-OS) Software
TAC support: http://www.cisco.com/tac
Documents: http://www.cisco.com/en/US/products/ps9372/tsd_products_support_serie
s_home.html
Copyright (c) 2002-2012, Cisco Systems, Inc. All rights reserved.
The copyrights to certain works contained herein are owned by
other third parties and are used and distributed under license.
Some parts of this software are covered under the GNU Public
License. A copy of the license is available at
http://www.gnu.org/licenses/gpl.html.

Software
  loader:    version N/A
  kickstart: version 6.1(1) [gdb]
  system:    version 6.1(1) [gdb]
  kickstart image file is: bootflash:/titanium-d1-kickstart.6.1.1.gbin
  kickstart compile time:  12/25/2020 12:00:00 [06/24/2012 00:54:16]
  system image file is:    bootflash:/titanium-d1.6.1.1.gbin
  system compile time:     7/1/2012 0:00:00 [06/24/2012 01:26:13]


Hardware
  cisco Nexus 7000 Unknown Chassis ("Unknown Module")
--More--2013 Mar 19 12:06:07 N7K-2 %$ VDC-1 %$ %PLATFORM-2-MOD_DETECT: Module 2 detected (Serial number ) Module-Type Titanium Ethernet Module Model 
2013 Mar 19 12:06:07 N7K-2 %$ VDC-1 %$ %PLATFORM-2-MOD_PWRUP: Module 2 powered up (Serial number )
  Intel(R) Xeon(R) CPU         with 2066240 kB of memory.
  Processor Board ID T50569F000C

  Device name: N7K-2
  bootflash:          0 kB
Kernel uptime is 0 day(s), 0 hour(s), 1 minute(s), 27 second(s)


plugin
  Core Plugin, Ethernet Plugin
N7K-2# 

Tuesday, February 5, 2013

Nexus 7K NX-OS Emulator Titanium 5.1(2) VM

This is NxOS Emulator Titanium 5.1(2) VM image.

N7K VM
Havent tested it thoroughly but several features seems to be not working.






.
*****************
 Username: admin
 Password: cisco
*****************
.N7K-2 login: admin
Password: 
Last login: Wed Feb  6 14:43:00 on ttyS0
Cisco NX-OS Software
Copyright (c) 2002-2010, Cisco Systems, Inc. All rights reserved.
NX-OS/Titanium software ("NX-OS/Titanium Software") and related
documentation, files or other reference materials ("Documentation")
are the proprietary property and confidential information of Cisco
Systems, Inc. ("Cisco") and are protected, without limitation,
pursuant to United States and International copyright and trademark
laws in the applicable jurisdiction which provide civil and criminal
penalties for copying or distribution without Cisco's authorization.
The use of NX-OS/Titanium Software and Documentation is strictly
limited to Cisco's internal use.

Any use or disclosure, in whole or in part, of the NX-OS/Titanium
Software or Documentation to any third party for any purposes is
expressly prohibited except as otherwise authorized by Cisco in writing.
The copyrights to certain works contained herein are owned by other
third parties and are used and distributed under license. Some parts
of this software may be covered under the GNU Public License or the
GNU Lesser General Public License. A copy of each such license is
available at
http://www.gnu.org/licenses/gpl.html and
http://www.gnu.org/licenses/lgpl.html
N7K-2# sh ver
Cisco Nexus Operating System (NX-OS) Software
TAC support: http://www.cisco.com/tac
Documents: http://www.cisco.com/en/US/products/ps9372/tsd_products_support_serie
s_home.html
Copyright (c) 2002-2010, Cisco Systems, Inc. All rights reserved.
The copyrights to certain works contained herein are owned by
other third parties and are used and distributed under license.
Some parts of this software are covered under the GNU Public
License. A copy of the license is available at
http://www.gnu.org/licenses/gpl.html.

Software
  loader:    version N/A
  kickstart: version 5.1(2) [gdb]
  system:    version 5.1(2) [gdb]
  kickstart image file is: bootflash:/titanium-d1-kickstart.5.1.2.gbin
  kickstart compile time:  12/25/2020 12:00:00 [12/18/2010 09:53:29]
  system image file is:    bootflash:/titanium-d1.5.1.2.gbin
  system compile time:     11/29/2010 12:00:00 [12/18/2010 11:47:03]


Hardware
  cisco Unknown MDS Chassis ("Unknown Module")
  Intel(R) Xeon(R) CPU         with 2066644 kB of memory.
  Processor Board ID T50569F000C

  Device name: N7K-2
  bootflash:          0 kB
Kernel uptime is 0 day(s), 0 hour(s), 2 minute(s), 31 second(s)


plugin
  Core Plugin, Ethernet Plugin


Problem:

After loaded vm, screen shows following message and stop it here:


Solution:

Use named pipe tcp proxy to send serial port info to a named pipe with tcp port configured. Also changed configuration from "this end is the client" to "this end is the server"



Saturday, February 25, 2012

Increase IOU NVRAM Size

Bu default IOU image NVRAM size is small not enough for complicated topology.

Router#dir nvram:
Directory of nvram:/

    6  -rw-        1636                    <no date>  startup-config
    7  ----           5                    <no date>  private-config
    1  ----          38                    <no date>  persistent-data

8192 bytes total (5475 bytes free)
Router#


Usage: <image> [options] <application id>
<image>: unix-js-m | unix-is-m | unix-i-m | ...
<application id>: instance identifier (0 < id <= 1024)
Options:
-e <n>          Number of Ethernet interfaces (default 2)
-s <n>          Number of Serial interfaces (default 2)
-n <n>          Size of nvram in Kb (default 16K)
-c <name>       Configuration file name
-d              Generate debug information
-t              Netio message trace
-q              Suppress informational messages
-h              Display this help
-C              Turn off use of host clock
-m <n>          Megabytes of router memory (default 64)
-L              Disable local console, use remote console
-u <n>          UDP port base for distributed networks

so add IOU option -n64 into command which allows NVRAM increased to 64K.
#!/bin/bash../wrapper-linux -m ../i86bi_linux-adverterprisek9-ms -p 2001 -- 1 -n64> /dev/null 2>&1 &
Now looks what we got for NVRAM.



Router#dir nvram:
Directory of nvram:/

   29  -rw-        1636                    <no date>  startup-config
   30  ----           5                    <no date>  private-config
    1  ----          38                    <no date>  persistent-data

32768 bytes total (30051 bytes free)

Now should be enough for certification importing to test PKI.



Thursday, January 5, 2012

BSD Router Project (BSDRP) on Vmware

BSDRP is a nice software which allows you connect your networks with a free , full functional router in complexed topology especially for testing environment.

I was looking for a nice, light weighting, full functional router which can be integrated into my ESXi VMs. I already have ASA, Checkpoint, Juniper Router, vyatta, monowall, pfsense installed. Also on my Windows 2008 Hyper-v server, I got my gns3 network up with cisco stuff in it. Occationly, there is a router needed between ESXi VMs to emulate a WAN connection. I would like to get a really light weighting router between VMs.

BSDRP is the best one so far I found. With a 64M memory allocated, it can run in VM without any problem to support main routing protocols.

From its official web page, "BSD Router Project (BSDRP) is a open source router distribution based on FreeBSD, supporting all majors routing protocols (RIP, OSPF, BGP, PIM, etc..) that fit on a 256Mb Compact Flash/USB."

The original manual is demonstrating how to do installation on Qemu or virtual box which not fit my esx settings. After one or two hours reading and searching, finally it is up and running well . Here is a list of simple steps to show how.

1. Download BSDRP image from http://bsdrp.net/downloads , ex. BSDRP_1.0_full_i386_serial.img.xz
2. Decompress the BSDRP image file with 7-Zip to get BSDRP_1.0_full_i386_serial.img. It will be converted to vmdk file for hooking up into Vmware environment.
3. Download qemu-img file from Qemu-0.15.1-windows-Medium.zip
unzip Qemu-0.15.1-windows-Medium.zip file and move qemu-img.exe into same folder as BSDRP_1.0_full_i386_serial.img
Type following command to do converting from RAW file to VMDK file.

qemu-img convert -f raw -O vmdk BSDRP_1.0_full_i386_serial.img BSDRP_1.0_full_i386_serial.vmdk

4. Create a vm in VMWARE and add BSDRP_1.0_full_i386_serial.vmdk as disk. Here is vm setting example: 64M memory, 2 network adapter, 1 serial port using named pipe.

Sunday, December 25, 2011

ASA 8.42 in VMware Workstation

Here are all related ASA(v) posts in this blog:


1. Download following files:

2. Change and replace files

a. change isolinu.cfg

DEFAULT asa842-vmlinuz
APPEND root=/dev/hda1 rw initrd= asa842-initrd.gz console=ttyS0,9600n8 auto nousb bigphysarea=16384 hda=980,16,32 ide_generic.probe_mask=0x01
TIMEOUT 1

b. Use genisoimage to create ISOLInux LiveCD

create a work folder in linux, such as /rrot/asa. create a subfolder isolinux
put all files (asa842-initrd.gz,asa842-vmlinuz.isolinux.cfg,isolinux.bin) into isolinux folder
in /boot/asa folder to run this command:

genisoimage -o dsl_asa.iso -J -r -v -b isolinux/isolinux.bin -c isolinux/boot.cat -no-emul-boot -boot-load-size 4 -boot-info-table -V "Gentoo linux x86" .
generate a dsl_asa.iso file and then replace dsl_asa.iso in 802 vm files.

3. CPU is a little bit high than asa802 version after tested . 

One core is used alomost 100%. Booting period is longer than asa802 too. I will still stick on asa802 for now. Wait the perfect simulating solution out to resolve cpu issue.
note: CPU issue can be resolved with a windows software BES  and you can download from here.

Friday, December 23, 2011

ASA 8.02 in Vmware Workstation

Here are all related posts in this blog:

1. Found a post regarding ASA on vm solution in which says write issue has been resolved.
Going to try it today and will post a update. DSL_ASA ISO file can download from this link.
Created vmware in vmware version 7.1.0 build-261024. All configuration is listed in the following pictures:

It is use COM to do output. Named Pipe TCP Proxy or vmwaregateway.exe will help VMWARE to transfer COM output to a TCP port. At host machine, do telnet localhost PORT. Then DSL interface should be up. Enter ./asa/bin/lina (there is . in the command, do not forget for those new to linux)to go into ASA interface.

ciscoasa> en
Password:
ciscoasa# show ver
Cisco Adaptive Security Appliance Software Version 8.0(2)
Compiled on Fri 15-Jun-07 19:29 by builders
System image file is "Unknown, monitor mode tftp booted image"
Config file at boot was "startup-config"
ciscoasa up 4 mins 5 secs
Hardware:   , 128 MB RAM, CPU Pentium 4 2804 MHz
Internal ATA Compact Flash, 256MB
BIOS Flash Firmware Hub @ 0xffe00000, 1024KB
0: Ext: Ethernet0/0         : address is 000c.2918.e2fa, irq 255
1: Ext: Ethernet0/1         : irq 255
2: Ext: Ethernet0/2         : irq 255
3: Ext: Ethernet0/3         : irq 255
4: Ext: Ethernet0/4         : irq 255
5: Ext: Ethernet0/5         : irq 255
VLANs                        : 200
Failover                     : Active/Active
3DES-AES                     : Enabled
Security Contexts            : 20
GTP/GPRS                     : Enabled
VPN Peers                    : 5000
WebVPN Peers                 : 2500
ADV END SEC                  : Enabled
Serial Number: 123456789AB
Running Activation Key: 0x00000000 0x00000000 0x00000000 0x00000000 0x00000000
Configuration register is 0x0
Configuration has not been modified since last system restart.
ciscoasa#

2. ftp FLAHS1 (from post http://www.netemu.cn/bbs/thread-9540-1-1.html) file into you linuxLive CD system. Run following command:
dd if=FLASH1 of=/dev/hda

note: Please make sure you are using IDE mode for your vmdk file. Also 0.256G should be enough for your virtual ide disk.

3. Save file. Wr won't work. Please use following command to try. Your disk0 should have right file structure to allow you save file. Unfortunately, copy run to start is not work as expected. 

asa802(config)# wr
Building configuration...
Cryptochecksum: c36d1836 b550a452 0b1a8782 bc03594f

%Error opening disk0:/.private/startup-config ()
Error executing command
[FAILED]

Even tried to copy running-config disk0:/.private/startup-config, got same error.


found a way to do copy:
asa802(config)# copy running-config disk0:/.private/startup-config1
Source filename [running-config]?
Destination filename [/.private/startup-config1]?
Cryptochecksum: 25eef8d7 63159cf2 e2b20271 786bb932
1964 bytes copied in 2.240 secs (982 bytes/sec)

Dont forget to set boot from startup-config1

boot config disk0:/.private/startup-config1


4. reload your vm, your change should be able to survive a reboot. CPU is really low.

 All your nic can be connected to this vm without any problem. Not sure multicast issue existing or not. will try and post later.

Note: ASA 8.4.2 has been running quite good in my machine with BES resolved CPU issue.