There should be at least two network interfaces for nChronos Server machine, one is management interface and the other is capture interface. The management interface should be allocated with IP address for communication.
Follow steps below to allocate an IP for the management interface.
1. Determine the network interface name of the management interface using command ip addr:
You can specify any network interface as the management interface. In this case, the network interface eth1 is determined as the management interface.
2. Open the configuration file of the management interface with command:
vi /etc/sysconfig/network-scripts/ifcfg-eth1
3. Press “i” to modify the configuration file, and allocate an IP address for it.
4. After the edit, press ESC and put “:wq” or “:wq!” to save the configuration.
5. Restart the network service with command service network restart
6. Check the IP address to make sure the configurations work, using the command ifconfig
Capture interfaces are usually connected the SPAN destination ports on the switch, therefore there is no need to allocate IP address. Follow steps below to configure capture interfaces.
1. Determine the network interface name of the capture interface using command ip addr. In this case, eth0 is the capture interface.
2. Open the configuration file of the capture interface with command:
vi /etc/sysconfig/network-scripts/ifcfg-eth0
3. For capture interfaces, just make ONBOOT=yes, and BOOTPROTO=none.
4. Save the configurations, and restart the network service with command service network restart.
If network interfaces are configured correctly, but it still fails to access nChronos Server, please make sure that the port numbers 443 and 3000 are added to firewall.
By default, nChronos Server uses port 3000 to communicate with nChronos Console, and uses port 443 for web portal access.
If your system is using iptables, use following commands to add ports 3000 and 443 to firewall:
cd /usr/local/bin/csrass/tools
./assist -E 3000
./assist -E 443
If your system is using firewalld instead of iptables, please use following commands to add ports to firewall:
firewall-cmd --permanent --zone=public --add-port=3000/tcp
firewall-cmd --permanent --zone=public --add-port=443/tcp