Install Cisco Enterprise NFVIS Using CIMC

This chapter describes how to install Cisco NFVIS through Cisco IMC for the supported hardware platforms.

Install NFVIS Through CIMC

Install Cisco Catalyst 8300 Series Edge uCPE Using CIMC

Minimum supported releases: Cisco NFVIS Release 4.12.2 and Cisco SD-Branch Release 20.12.2.

  1. Access the CIMC Interface: Login to CIMC using your administrator credentials.

  2. Load the Cisco NFVIS operating system installation disk into vKVM-mapped vDVD, or copy the disk image files to your computer. Launch the console from the CIMC Home page, click Launch vKVM from the Toolbar.

    Ensure that the vKVM-mapped vDVD is in boot order.

    Reboot the server. When the server reboots, it begins the installation process from the vKVM-mapped vDVD.

  3. Prepare the Installation Media: You can download, map, unmap, or delete a host image. Download a host image, such as Linux from a remote FTP or HTTP server onto the CIMC internal repository and then map the image onto the virtual drive of a USB controller in the Cisco Catalyst 8300 Series Edge uCPE. After you map the image, set the boot order to make the virtual drive, in which the image is mounted, as the first boot device, and then reboot the server. The host image must have .iso as the file extension. For example,

    For more detailed information on host image mapping see, Host Image Mapping.

  4. Map the host Image: In the CIMC interface, navigate to the Compute menu and click Host Image Mapping tab. Browse to the location of your ISO image, and upload. You see the ISO image listed in the Host Image Mapping Information tab and click Map Selected Image. Reboot the server.


    Note

    Set the boot order to make the virtual drive in which the image is mounted as the first boot device.

  5. Manage Server Power: In the Navigation pane, click the Chassis > Summary > Host Power Link.

    Click Hard Reset to reboot the server.

  6. Follow Installation Prompts: After the system reboots, continue to monitor the KVM window with regards to the booting process. Follow the prompts you see to complete the installation process. Follow the prompts, providing the required information as requested.

  7. Confirm Installation: Once the installation is complete, the system reboots again. You can confirm the installation by logging into the Cisco NFVIS and checking the system status.

Install NFVIS on ENCS 5400 Platform

Software or hardware RAID controller setup is not supported on Cisco ENCS 5400 platform devices. NFVIS is not installed on RAID disk group. RAID disk group on ENCS 5400 platform devices is used for extdatastore only.

Procedure

Step 1

Log in to CIMC.

The recommended CIMC version for ENCS 5400 platforms is 3.2(7) or later version.

Step 2

To launch KVM Console, Select Launch KVM from the CIMC homepage.

You can choose Java or HTML based KVM. It is recommnded to use HTML based KVM. Ensure that the pop-up blocker is disabled as KVM Console opens in a separate window.

Step 3

To map virtual media from the KVM Console:

  1. To know if a downloaded file is safe to install, it is essential to compare the file’s checksum before using it. Verifying the checksum helps ensure that the file was not corrupted during network transmission, or modified by a malicious third party before you downloaded it. For more information see, Virtual Machine Security.

  2. Select Virtual Media and then Activate Virtual Devices.

  3. Select Virtual Media again and then Map CD/DVD. Browse and select the Cisco Enterprise NFVIS ISO image. Click Open and Map Drive to mount the image.

  4. Select Virtual Media again to ensure the NFVIS ISO image is now mapped to CD/DVD.

Step 4

To configure Boot Order:

  1. From the CIMC Compute, select BIOS.

  2. Select Configure Boot Order and the Configure Boot Order dialog box appears.

  3. From the CD/DVD page, select Cisco vKVM-Mapped vDVD, and select Add.

  4. From HDD, select RAID Adapter, and then click Add.

  1. Set the boot order sequence using the Up and Down options. The Cisco vKVM-Mapped vDVD boot order must be the first choice. Save Changes to complete the boot order setup.

Note

 

To configure Boot Order for UEFI through CIMC, the supported BIOS version is 2.10 or later. If any other BIOS version is used, you must configure UEFI Boot Order through the BIOS setup menu and set BootOrderRules to Loose.

To configure Boot Order for UEFI:

  1. From the CIMC Compute, select BIOS.

  2. Select Configure Boot Order and the Configure Boot Order dialog box appears.

  3. Use >>, <<, up and down buttons to make UEFI Image Map as the first option in the right-hand column of the user interface.

  4. Use the >>, <<, up and down buttons again to make UEFI OS as the second option in the right-hand column of the user interface.

  5. Click Save changes.

You can also configure Boot Order for UEFI using CLI. The following is an example to configure Boot Order for UEFI using CLI:


Server# scope bios
Server /bios # set boot-order uefimap,uefios
To manage boot-order:
- Reboot server to have your boot-order settings take place
- Do not disable boot options via BIOS screens
- If a specified device type is not seen by the BIOS, it will be removed
  from the boot order configured on the BMC
- Your boot order sequence will be applied subject to the previous rule.
  The configured list will be appended by the additional device types
  seen by the BIOS
Server /bios *# commit
Server /bios # 
Server /bios # show detail
BIOS:
    BIOS Version:"UCSEDM3.2.10b5 (Build Date:02/27/2020)"
    Boot Order: UEFIMAP,UEFIOS
    FW Update/Recovery Status: None, OK
    Active BIOS on next reboot: main
    UEFI Secure Boot: enabled

Step 5

Power cycle server to start the installation:

From CIMC homepage, select Host Power. Reboot the server by selecting the Power Off option. After the server is down, select the Power On option.

When the server reboots, the KVM console automatically installs Cisco Enterprise NFVIS from the virtual CD/DVD drive. The entire installation might take 30 minutes to one hour to complete.

Step 6

For ENCS 5400 platforms, auto-upgrade the firmware.

Starting from NFVIS 3.8.x release, firmware auto-upgrade is supported. After the NFVIS installation is complete, BIOS or CIMC is upgraded to the corresponding versions automatically. CIMC and NFVIS is rebooted multiple times. The firmware upgrade might take 30 minutes to one hour to complete. Do not use the system during the firmware upgrade.

Step 7

After the installation is complete, the system automatically reboots from the hard drive. Log into the system when the command prompt nfvis login is displayed after the reboot.

Use admin as the login name and Admin123# as the default password.

Note

 

The system prompts you to change the default password at the first login attempt. You must set a strong password as per the on-screen instructions to proceed with the application. You cannot run API commands or proceed with any tasks unless you change the default password at the first login. API returns a 401 unauthorized error if the default password is not reset.

Step 8

Verify the installation using the System API, CLI, or by viewing the system information from the Cisco Enterprise NFV portal.

Step 9

Configure hostname and assign a management IP address to access NFVIS.

Connect ethernet management port to the network for management access. To enable IP address based access over ethernet for NFVIS, use the serial console connection port.

Default System Configuration on the Cisco ENCS

The diagram below illustrates the default network configuration of Cisco Enterprise NFVIS with the Cisco ENCS.

Figure 1. Default Network Configuration of Cisco Enterprise NFVIS with the Cisco ENCS 5400


Figure 2. Default Network Configuration of Cisco Enterprise NFVIS with the Cisco ENCS 5100

  • LAN ports—Eight physical Gigabit Ethernet ports for inbound and outbound traffic.

  • WAN port—You can use one of the dual media Ethernet ports (wan-br and wan2-br) for DHCP connection.

  • Bridges—They form a Layer 2 domain between virtual network interface controllers (vNICs) of VMs. A vNIC is used by a virtual machine to provide virtual network interfaces by defining a range of MAC addresses. The default management IP address (192.168.1.1) for the NFVIS host is configured on the management port. Multiple VMs can use the same LAN port for local connectivity.

  • Network—It is a segment Layer 2 bridge domain where only the specific VLAN traffic is allowed.

  • Reserved VLANs in the LAN network on the ENCS 5400 platform—The VLAN range 2350-2449 is reserved for internal use and should not be used on the external switch ports and for virtual machines in the LAN ports". Note that this limitation doesn't apply to the WAN ports.

  • Internal 192.168.10.00/24 and 192.168.50.0/24 networks—The IP subnet 192.168.10.0/24 and 192.168.50.0/24 are used for the ENCS-5400 internal networks. A user should not use this IP subnet on the NFVIS management network. In the future NFVIS releases, this internal subnet will be isolated so that users can use this for NFVIS management.


Note

The following networks and bridges are automatically configured. You can configure more as required.

  • A LAN network (lan-net) and a LAN bridge (lan-br)

  • A WAN network (wan-net) and a WAN bridge (wan-br)

wan2-net and wan2-br are the default configurations for ENCS 5400 and ENCS 5100.

The default networks and bridges cannot be deleted.

Install NFVIS on USC C-Series Servers and CSP Platforms

UCS-C series devices has to configure RAID disk group before installing NFVIS. UCS-C supports only single RAID disk group for fresh installation.


Note

  • Starting from Cisco NFVIS 4.6.1 release, USC C-Series Servers and CSP Platforms support upto 3 RAID groups. The first raid group is reserved for OS installation and the other RAID groups can be used as external storage drives.

  • Starting from Cisco NFVIS release 4.8.1 till Cisco NFVIS release 4.12.1, installing Cisco NFVIS on Cisco UCS C-Series Servers aren't supported.

  • Starting from Cisco NFVIS release 4.13.1, install Cisco NFVIS on Cisco UCS C-Series Servers including Cisco UCS C-M6 Rack servers using Cisco NFVIS Smart Licensing feature.

  • Starting from Cisco NFVIS 4.10.1, Cisco NFVIS can't be installed on Cisco CSP platforms.

Procedure

Step 1

Log in to CIMC.

The recommended CIMC version for USC-C Series Servers and Cisco CSP platforms is 3.0(3c) or later version.

The recommended CIMC version for Cisco UCS-C Series Rack Servers is 4.3(2) or later versions.

Step 2

To launch KVM Console, Select Launch KVM from the CIMC homepage.

You can choose Java or HTML based KVM. It is recommnded to use HTML based KVM. Ensure that the pop-up blocker is disabled as KVM Console will open in a separate window.

Step 3

To map virtual devices from the KVM Console:

  1. To know if a downloaded file is safe to install, it is essential to compare the file’s checksum before using it. Verifying the checksum helps ensure that the file was not corrupted during network transmission, or modified by a malicious third party before you downloaded it. For more information see, Virtual Machine Security.

  2. Select Virtual Media and then Activate Virtual Devices.

  3. Select Virtual Media again and then Map CD/DVD. Browse and select the Cisco Enterprise NFVIS ISO image. Click Open and Map Drive to mount the image.

  4. Select Virtual Media again to ensure the NFVIS ISO image is now mapped to CD/DVD.

Step 4

To configure boot order:

  1. From the CIMC Compute, select BIOS.

  2. Select Configure Boot Order and the Configure Boot Order dialog box appears.

  3. Select Advanced.

  4. The Add Boot Device page appears. Select Add Virtual Media, and the Add Virtual Media dialog box appears.

  5. Enter a name and select KVM Mapped DVD. Set state to Enabled and order as 1, and Save Changes.

  6. The Add Boot Device page appears again, select Add Local HDD, and Add Virtual Media dialog box appears.

  7. Enter a name, set state to Enabled and order as 2, and Save Changes.

  8. Click Close.

Step 5

Power cycle server to start the installation:

From CIMC homepage, select Host Power. Reboot the server by selecting the Power Off option. After the server is down, select the Power On option.

When the server reboots, the KVM console automatically installs Cisco Enterprise NFVIS from the virtual CD/DVD drive. The entire installation might take 30 minutes to one hour to complete.

Step 6

After the installation is complete, the system automatically reboots from the hard drive. Log into the system when the command prompt nfvis login is displayed after the reboot.

Use admin as the login name and Admin123# as the default password.

Note

 

The system prompts you to change the default password at the first login attempt. You must set a strong password as per the on-screen instructions to proceed with the application. You cannot run API commands or proceed with any tasks unless you change the default password at the first login. The API commands will return 401 unauthorized error if the default password is not reset.

Step 7

Verify the installation using the System API, CLI, or by viewing the system information from the Cisco Enterprise NFV portal.

Default System Configuration on the Cisco UCS C220 M4 Server and Cisco CSP 2100

Configuring the networks in Cisco Enterprise NFVIS allows inbound and outbound traffic and VMs to be service chained. The following diagram illustrates the default network configuration:

Figure 3. Default Network Configuration with Cisco UCS C220 M4 and Cisco CSP 2100


The following networks and bridges are created by default, and cannot be deleted. You can configure more as required.

  • A LAN network (lan-net) and a LAN bridge (lan-br)—The default static management IP address (192.168.1.1) for the NFVIS host is configured on the LAN bridge. One of the ports for inbound and outbound traffic are associated with the LAN bridge. Any LAN port can be used to access the default static IP address. By default, the hostname is set to "nfvis".

  • A WAN network (wan-net) and a WAN bridge (wan-br)—This is created with the "eth0" port, and is configured to enable the DHCP connection.

By default, the first port on the device is associated with the WAN bridge. One of the other ports on the device are associated with the LAN bridge.

For more details about the initial setup, see the Installing the Server chapter in the Cisco UCS C220 M4 Server Installation and Service Guide or Cisco Cloud Services Platform 2100 Hardware Installation Guide.

Install NFVIS on UCS-E Series Servers

  • UCS-E Single-Wide supports only single RAID disk group for fresh installation. UCS-E Double-Wide series supports single or dual RAID disk groups for NFVIS 4.1 fresh installation, or one RAID disk group for NFVIS 3.X fresh installation.

    • Single disk group (4 disks): RAID0/RAID1/RAID10/RAID5. If FDE disks are used, you can also enable Secured RAID0/RAID1/RAID10/RAID5.

    • Dual disk groups (2 disks each): RAID0/RAID1 or Secured RAID0/RAID1 if FDE disks are used. NFVIS installation does not support any configuration with JBOD disk.

    For more information, see Managing Storage Using RAID for UCS-E devices

  • Configure the Gigabit Ethernet interface on the Cisco ISR router.

  • Configure the UCS E interface on the Cisco ISR router. The following sample configuration shows the basic configuration performed on the Cisco ISR 4451 router with DHCP enabled. 

    

Last configuration change at 02:36:37 UTC Thu Feb 18 2016
!
version 15.5
service timestamps debug datetime msec
service timestamps log datetime msec
no platform punt-keepalive disable-kernel-core
!
hostname NFVIS-ISR4451
!
boot-start-marker
boot system bootflash:isr4300-universalk9.03.16.01a.S.155-3.S1a-ext.SPA.bin
boot-end-marker
!
!
vrf definition Mgmt-intf
 !
 address-family ipv4
 exit-address-family
 !
 address-family ipv6
 exit-address-family
!
!
no aaa new-model
!
!
!
ip domain name cisco.com
!
!
!
subscriber templating
!
multilink bundle-name authenticated
!
!
!
license udi pid ISR4331/K9 sn FDO192207MN
!
!
ucse subslot 1/0
 imc access-port shared-lom console
 imc ip address 172.19.183.172 255.255.255.0 default-gateway 172.19.183.1 
!
spanning-tree extend system-id
!
!
redundancy
 mode none
!
!
!
vlan internal allocation policy ascending
!
!
! 
interface GigabitEthernet0/0/0
 ip address 172.19.183.171 255.255.255.0
 media-type rj45
 negotiation auto
!
interface GigabitEthernet0/0/1
 no ip address
 shutdown
 negotiation auto
!
interface GigabitEthernet0/0/2
 no ip address
 shutdown
 negotiation auto
!
interface ucse1/0/0
 ip unnumbered GigabitEthernet0/0/0
 negotiation auto
 switchport mode trunk
 no mop enabled
 no mop sysid
!
interface ucse1/0/1
 no ip address
 no negotiation auto
 switchport mode trunk
 no mop enabled
 no mop sysid
!
interface GigabitEthernet0
 vrf forwarding Mgmt-intf
 no ip address
 shutdown
 negotiation auto
!
interface Vlan1
 no ip address
 shutdown
!
ip default-gateway 172.19.183.1
ip forward-protocol nd
no ip http server
no ip http secure-server
ip tftp source-interface GigabitEthernet0
ip route 0.0.0.0 0.0.0.0 172.19.183.1
ip route 172.19.183.172 255.255.255.255 ucse1/0/0
ip ssh version 2
!
!
!

control-plane
!
!
line con 0
 stopbits 1
line aux 0
 stopbits 1
line vty 0 4
 password lab
 login local
 transport input all
 transport output all
!
!
end

Note

Ensure that following supported firmware versions or above are available:

  • BIOS UCSED.2.5.0.3 or later for UCS-E160D-M2/K9 and UCS-E180D-M2/K9

  • BIOS UCSES.1.5.0.5 or later for UCS-E140S-M2/K9

  • BIOS UCSEM3_2.5 or later for UCS-E160S-M3

  • BIOS UCSEDM3_2.5 or later for UCS-E180D-M3 and UCS-E1120D-M3

Procedure

Step 1

Log in to CIMC.

Note

 

The recommended CIMC version for USC-E Series Servers is 3.2(7) or later version.

Step 2

To launch KVM Console, Select Launch KVM from the CIMC homepage.

You can choose Java or HTML based KVM. It is recommnded to use HTML based KVM. Ensure that the pop-up blocker is disabled as KVM Console will open in a separate window.

Step 3

To map virtual media from the KVM Console:

  1. To know if a downloaded file is safe to install, it is essential to compare the file’s checksum before using it. Verifying the checksum helps ensure that the file is not corrupted during network transmission, or modified by a malicious third party before you downloaded it. For more information see, Virtual Machine Security.

  2. Select Virtual Media and then Activate Virtual Devices.

  3. Select Virtual Media again and then Map CD/DVD. Browse and select the Cisco Enterprise NFVIS ISO image. Click Open and Map Drive to mount the image.

  4. Select Virtual Media again to ensure the NFVIS ISO image is now mapped to CD/DVD.

Step 4

Configure boot order.

  1. From the CIMC Compute, select BIOS.

  2. Select Configure Boot Order and the Configure Boot Order dialog box appears.

  3. From the CD/DVD page, select Cisco vKVM-Mapped vDVD, and select Add.

  4. From HDD, select RAID Adapter, and then select Add.

  5. Set the boot order sequence using the Up and Down options. The Cisco vKVM-Mapped vDVD boot order must be the first choice. Save Changes to complete the boot order setup.

Note

 

To configure Boot Order for UEFI through CIMC, the supported BIOS version is 2.10 or later. If any other BIOS version is used, you must configure UEFI Boot Order through the BIOS setup menu and set BootOrderRules to Loose.

To configure Boot Order for UEFI:

  1. From the CIMC Compute, select BIOS.

  2. Select Configure Boot Order and the Configure Boot Order dialog box appears.

  3. Use >>, <<, up and down buttons to make UEFI Image Map as the first option in the right-hand column of the user interface.

  4. Use the >>, <<, up and down buttons again to make UEFI OS as the second option in the right-hand column of the user interface.

  5. Click Save changes.

Step 5

Power cycle server to start the installation:

From CIMC homepage, select Host Power. Reboot the server by selecting the Power Off option. After the server is down, select the Power On option.

When the server reboots, the KVM console automatically installs Cisco Enterprise NFVIS from the virtual CD/DVD drive. The entire installation might take 30 minutes to one hour to complete.

Step 6

For ENCS 5000 series platforms, auto-upgrade the firmware.

Starting from NFVIS 3.8.x release, firmware auto-upgrade is supported. After the NFVIS installation is complete, BIOS or CIMC is upgraded to the corresponding versions automatically. CIMC and NFVIS is rebooted multiple times. The firmware upgrade might take 30 minutes to one hour to complete. Do not use the system during the firmware upgrade.

Step 7

After the installation is complete, the system automatically reboots from the hard drive. Log into the system when the command prompt nfvis login is displayed after the reboot.

Use admin as the login name and Admin123# as the default password.

Note

 

The system prompts you to change the default password at the first login attempt. You must set a strong password as per the on-screen instructions to proceed with the application. You cannot run API commands or proceed with any tasks unless you change the default password at the first login. API will return 401 unauthorized error if the default password is not reset.

Step 8

Verify the installation using the System API, CLI, or by viewing the system information from the Cisco Enterprise NFV portal.

Default System Configuration on the Cisco UCS E-Series Servers

Figure 4. Default Network Configuration with a Cisco UCS E-Series Server


The following networks and bridges are created by default, and cannot be deleted. You can configure more as required.

  • A LAN network (lan-net) and a LAN bridge (lan-br)—The default static management IP address (192.168.1.1) for the NFVIS host is configured on the LAN bridge. All other ports for inbound and outbound traffic are associated with the LAN bridge. By default, the hostname is set to "nfvis".
  • A WAN network (wan-net) and a WAN bridge (wan-br)— The physical WAN ports are on the Cisco ISR module. They are not externally available on the Cisco UCS E server. The WAN traffic comes from the ISR WAN ports, and goes through the backplane to the Cisco UCS-E server. The backplane has one internal WAN interface (GE0) to establish connection with the Cisco UCS-E server. By default, the "GE0" interface is enabled for the DHCP connection.

For more details on the initial setup, see the Getting Started Guide for Cisco UCS E-Series Servers and the Cisco UCS E-Series Network Compute Engine.