I would recommend to redo a check of the latest list of required endpoints and network connections. https://docs.netapp.com/us-en/occm/reference_networking_cloud_manager.html#endpoints-to-manage-resources-in-aws If nothing is missing - please log a case with NetApp support Best, Yaron Haimsohn Director, Cloud Solutions Architecture Typed on iPhone with fat thumbs
... View more
Hi Moncy, CVO has Fabric pool license for free which means every CVO can tier off data to the object storage of that cloud it is running in. While the license is free, the customer will pay the object storage costs. Cloud Tiering is a totally different solution, also using Fabric pool, in which you tier off data from AFF/FAS to object storage in the cloud. That one has a license you may need to purchase, though you can do it directly through Cloud Manager as well. Storage costs are, again, are paid for by the customer. AFF/FAS DO NOT tier data to CVO. You can SnapMirror data to CVO who will in turn tier off that data of the secondary copy. Primary tiering happens to the object storage in the cloud and the storage costs are for the customer. All of the licenses you may need to buy (FabricPool for Cloud Tiering, and CVO) include support and do not cover the object storage costs. Cloud Manager is free of license (But need to run 24/7) and includes support as well. Best, Yaron Haimsohn Director, Cloud Solutions Architecture
... View more
Hello Keisuke,
1] The bug appears on some directory creations, where the directory ends up getting the permission of the first file copied in that folder.
There is no workaround, but subsequent sync can see a mismatch in the folder permission and can fix that. That subsequent action will fix the permission on high likelihood - It will not recopy files just fix permissions.
We are working on a fix that should be available for next mid-month drop.
2] This is an intermittent failure. Your source returned an error when we tried to read the file.
It may be a busy source, slow source, network timeout etc. I can't be mucn more specific as i need to relate to a specific error. The one you provided was a read timeout.
3] The impact would be mostly on the backend service event logging, and our ability to look at some of your issuse and offer assistance with it.
So, we do not recommend it, but as an end user the service will have no ill effect.
The step would be to not allow the broker to get to the kinesis service in AWS.
Note: SQS is mandatory and blocking it will block your ability to sync.
Best,
Yaron
... View more
Dear sir,
As agreed with the team we will work on these topics via emails. I will, however, share a concise reply here as well.
[1] Permissions of folders in NFS can, on occasion, be different from source. This has been identified as a bug and we are working on solving it. Additional sync operation may fix that issue, but not with 100% certainty.
I will have an update with timeline for fix soon, but we gave it a high priority.
[2] Scanning happens before the copying. When the error is scan failure it is most likely failing to read from the source. It may happen intermittently, but as you mentioned, the next sync will retrasmit that.
We did see that happen when targetting EFS as EFS can be slow to react (Depending on what is the EFS configuration.
[3] The broker has internet access and is sending meta data to the backend of the SaaS service of CloudSync. It sends messages to the SQS queues that are critical for the sync operation.
Your data is NOT being sent to the backend but is copied directly.
Other kind of traffic are Kibana artifacts that allow us to determine the status of the transfer. Potentially this can be reduced, but we don't recommend it.
I will send the information and more over email as well.
Best,
Yaron Haimsohn
Manager, Cloud Solution Architecture
NetApp
yaron.haimsohn@netapp.com
... View more
I have to disagree. Error is only in the 400 range while 302 means temporary move or redirect. The apps (OCCM in this case), redirect the user to the hosted login page served in the netapp-cloud-account.auth0.com domain with additional headers and url parameters. It does not support direct browsing to https://netapp-cloud-account.auth0.com. The 302 (temporarily moved) response is not an error (400 and above is) and is part of the normal flow. Cheers, Yaron
... View more
This is likely a Red Herring (a misleading notification). It means that in general your Cloud manager fails to connect to the internet services it requires. I’d check here for prerequisites here: http://clouddocs.netapp.com/occm/en/reference_networking_azure.html (We have an AWS version as well) I’d start by updating the manager to 3.4.5 and then ssh to the instance and see whether you can access netapp-cloud-account.auth0.com That might be a first step to figure what are you missing Yaron Haimsohn Manager, Cloud Solutions Architecture
... View more
While using chrome indeed works better, we found that in some cases the issue was that the organization proxy towards the network was baked into the IE and that when people installed chrome it bypassed it. But sure - trying chrome makes sense 🙂
... View more
Rajesh, It is definitely some network configuration blocking access to a needed website. Most likely it’s netapp-cloud-account@auth0.com. Go to Cloud Manager via SSH and check if that url is accessible to you. Then look at this: http://clouddocs.netapp.com/occm/en/reference_networking_azure.html Thanks, Yaron
... View more
Hi, This is not only about SG. First and formost - Cloud Manager needs access to AWS but it also needs HTTPS access to the subnet in which youvare deploying ONTAP cloud. In HA that means all three subnets of the three nodes. On top of that you need port 3000 to rhe subnet of the mediator. Very detailsd in the manual available under the Help menu of Cloud Manager. Yaron Haimsohn Manager, Cloud Solutions Architecture
... View more
Please check how your instance was created. In all likelihood you have selected the option to conncet to the instance with keypair access rather than password. Try admin as user with your keypir. Yaron Haimoshn Manager, Cloud Solutions Architecture
... View more
Hi Tyrone, Sounds like some network issue nevertheless. Can you check if your instance is defined to go out through an organization proxy in the browser. We’ve seen that before.\ Thanks, Yaron
... View more
It is not a backup tool per se. It can easily create a secondary/tertiary data copy, but was never planned as a backup tool. We are adding some features that would make it good for archival use cases. Yaron Haimsohn Manager, Cloud Solutions Architectur
... View more
Yes it is fully supported. Yes, you need a data broker. Can be the same one and use it both for NFS and CIFS. Yaron Haimsohn Manager, Cloud Solutions Architecture
... View more
A sync is considered running while the relationship is still on. In order to stop payment for a relationship you must log in to datafabric.io and delete any relationship. Deletion of the Broker through AWS is not enough and may not stop it. Hope that helps. Yaron Haimsohn Manager, Cloud Solutions Architecture yaron.haimsohn@netapp.com
... View more
Hi Sean, As discussed, the relationships are not cached in any way and are read from the cluster. The way to clean them in case the ONTAP Cloud was removed is to make sure that the Cluster and SVM peering is removed from the remaining on prem. Regarding the relationship creation seemingly in progress - It is a minor UI glitch. We have no way to know if the instance was terminated in mid action, and during the next monthly Cloud Manager update it will be closed as failed. Thanks, Yaron
... View more
Hi Markus, Sounds like the wrong forum even though it might be the same issue. This is a forum for ONTAP Cloud, and doesn't sounds like this is the case. If it is - Can you share more on your ONTAP Cloud configuration (Cloud provider, instance/vm and more). Thanks, Yaron Haimsohn Cloud Solution Architect.
... View more
Hi Juan, We hope that you will accept our sincere apologies for the inconvenience you experienced when you tested Cloud Sync, and the syncing operation paused in mid-sync. Our every intention is to ascertain that our customers would be satisfied. This is definitely something that we would like to further look at, and I'd reach out to your directly to resolve this. Thanks in advance, Yaron Haimsohn Manager, Solution Architecture Tel-Aviv Innovation Center
... View more
Mikky, Generally you are correct. If you'd use the two nodes in form of the active node not in the mediator subnet (In case you work active-standby) - You can survive an AZ failure on the active node. Still, if the other AZ (with the mediator) fails - You may not have the full functionality as advertised. Best, Yaron
... View more
Hi there, ONTAP Cloud HA can work on top of 2 AZs only. This setup, while working, is not optimal in a way that it may not save you from AZ failure, but it is good for any other failure. The spread of instances should be one data node per AZ and the mediator in one of them. If the AZ without the mediator fails - You'd have HA. if the AZ with the mediator fails - The other node may still work, but you won't have HA and there would be no failover. It would still protect you from instance/storage/network failure to one of the data nodes. Hope that helps, Yaron Haimsohn Solution Architect Team Lead Cloud Manager
... View more
Are you inside the VPC? More precise is the machine you are browsing from is in a subnet whose route table has the floating IPs? Please check
... View more
Hi, You should assign only IPs outside of VPC. As for the IPs themselves you need to "make them up". The HA will edit the route table of that VPC (Those you select) to point the floating IPs at specific ENIs of the nodes. In time of need these would be moved around (The tables edited on the fly to point at the other node ENI) Yaron
... View more
Thank you. On that specific topic - We don't support installing Cloud Manager on-premise on a RHEL which isn't 7.1/7.2 and soon CentOS 7.0. Thanks, Yaron
... View more