Hardware Appliance Re-image
This topic describes re-imaging a hardware appliance using the Gateway10 ISO file. It uses web-based ILOM.
Before You Begin
- Obtain the Windows image for launching ILOM. JRE 1.8.0_181 or later must be installed.
- Copy the Gateway 10 ISO file to the Windows image.
Re-image the Hardware Appliance
To Re-image the Hardware Appliance:
- Launch ILOM and log in with ILOM credentials.
- In the left navigation panel, clickRemote Control.
- ClickRedirectionthen clickLaunch Remote Control. A prompt appears notifying you of the Java 6.0 requirement. If you have Java 6.0 installed, clickOK.
- ClickKeepwhen asked about the jnlpgenerator file.
- Click the^icon after the file, and selectOpen.A Security Warning appears if the connection to the website is untrusted.
- ClickRun. If a Check Certificate page appears warning you that the certificate is not trusted, clickContinue (not recommended).A new console window appears.
- In the top navigation bar, clickKVMS, then clickStorage.
- ClickAdd, browse to the ISO file on the Windows machine and clickSelect. The file appears listed under Storage Devices.
- Select the ISO file and clickConnect.
- Reboot the machine: in ILOM, navigate toHost Management>Power Control>Select Reset>Save.
- Switch to the Remote Console window and pressF8to access the Boot Menu.
- On the Boot Menu, selectUSB:Virtual:Remote ISOand press Enter.
- A new menu appears. Typeappliancenozeroor select theDo Not Zerooption (if available). The imaging process begins.
- When the imaging process is complete, you are asked to Reboot. ClickReboot.
- After the reboot, verify that the expected Gateway version is displayed.
- ClickKVMSand selectStorage. ClickDisconnect.
Verify the Re-image Procedure
To verify, execute the following command:
grep ERROR /root/*.log
If you see
ERROR to mount,
ERROR to unmount, or
ERROR to copy, re-image the appliance and verify once again. If the errors continue, create a support ticket on casupport.broadcom.com.
You can safely ignore the following error: "ERROR - while trying to fix /opt/SecureSpan/Gateway/runtime/etc/profile.d/appliancedefs.sh"
Harden the Installation
After imaging the appliance, the sealsys script required to harden the installation is available in the /root directory. If it is not available, re-image the appliance.
If the sealsys script is not executed after imaging the appliance, the system will be in an incomplete state and cause unpredictable issues with Gateway functionality.
Run sealsys to harden the installation.
- Log into the Gateway using root credentials.
- Ensure that the RAID is not still in the process of initializing, by checking the status for RAID Volumes and Disks:
If the status is not OK, do not proceed.
- UnderRAID Volumesthere is one volume with statusOK.
- UnderDISKS, there are two disks listed, both with statusOK.
- Continue your verification. Run the following command:Verify that there is no output when running
There should be no output.history -c
- With verification complete, type the following command to run sealsys:
The system shuts down and powers off../sealsys all
Reconfigure Gateway System Settings